rm sshguard

hosts/fwminex/configuration.nix

@@ -369,7 +369,6 @@ in
     };
 
     services = {
-      sshguard.enable = true;
       gitea.enable = true;
       hass.enable = true;
       syncthing-relay.enable = true;

hosts/mtworx/configuration.nix

@@ -85,7 +85,6 @@ in
     };
 
     services = {
-      sshguard.enable = false;
       ssh8022.client = {
         enable = true;
         keyfile = config.age.secrets.ssh8022-client.path;

hosts/vno1-gdrx/configuration.nix

@@ -70,8 +70,6 @@ in
     };
 
     services = {
-      sshguard.enable = false;
-
       ssh8022.client = {
         enable = true;
         keyfile = config.age.secrets.ssh8022-client.path;

hosts/vno3-rp3b/configuration.nix

@@ -78,7 +78,6 @@
     services = {
       tailscale.enable = true;
       node_exporter.enable = true;
-      sshguard.enable = true;
 
       borgstor = {
         enable = true;

modules/services/default.nix

@@ -19,7 +19,6 @@
     ./postfix
     ./remote-builder
     ./ssh8022
-    ./sshguard
     ./syncthing
     ./syncthing-relay
     ./tailscale

modules/services/sshguard/default.nix

@@ -1,25 +0,0 @@
-{
-  config,
-  lib,
-  myData,
-  ...
-}:
-{
-  options.mj.services.sshguard = with lib.types; {
-    enable = lib.mkOption {
-      type = bool;
-      default = false;
-    };
-  };
-
-  config = lib.mkIf config.mj.services.sshguard.enable {
-    services.sshguard = {
-      enable = true;
-      blocktime = 900;
-      whitelist = [
-        "192.168.0.0/16"
-        myData.subnets.tailscale.cidr
-      ] ++ (lib.catAttrs "publicIP" (lib.attrValues myData.hosts));
-    };
-  };
-}