install.fairie/home/private_dot_ssh/fail2ban/run_onchange_after_fail2ban.tmpl
Brian Zalewski 9de3b66c56 Update 55 files
- /home/dot_gnupg/public/0xF0A300E4199A1C33.sig
- /home/dot_gnupg/public/apt.hashicorp.sig
- /home/dot_gnupg/public/linux.wazuh.sig
- /home/dot_gnupg/public/qubes.uman.sig
- /home/dot_ssh/authorized_keys.github.tmpl
- /home/dot_ssh/endlessh/config.tmpl
- /home/dot_ssh/endlessh/run_onchange_after_endlessh.tmpl
- /home/dot_ssh/fail2ban/jail.local.tmpl
- /home/dot_ssh/fail2ban/run_onchange_after_fail2ban.tmpl
- /home/dot_ssh/private_config.tmpl
- /home/dot_ssh/private_id_rsa.tmpl
- /home/dot_ssh/private_ssh-audi.tmpl
- /home/dot_ssh/private_ssh-blue.tmpl
- /home/dot_ssh/private_ssh-fiat.tmpl
- /home/dot_ssh/private_ssh-honda.tmpl
- /home/dot_ssh/private_ssh-lab.pub.tmpl
- /home/dot_ssh/private_ssh-lab.tmpl
- /home/dot_ssh/private_ssh-mini.tmpl
- /home/dot_ssh/private_ssh-red.tmpl
- /home/dot_ssh/private_ssh-yellow.tmpl
- /home/dot_ssh/run_onchanges_after_ensure-private-key.tmpl
- /home/dot_ssh/run_onchanges_after_generate-public-keys.tmpl
- /home/dot_ssh/ssh-authorized_keys.yubikey.tmpl
- /home/dot_ssh/symlink_authorized_keys.tmpl
- /home/dot_ssh/system/banner
- /home/dot_ssh/system/run_onchange_after_sshd.tmpl
- /home/dot_ssh/system/sshd_config.tmpl
- /home/private_dot_gnupg/public/linux.wazuh.sig
- /home/private_dot_gnupg/public/0xF0A300E4199A1C33.sig
- /home/private_dot_gnupg/public/qubes.uman.sig
- /home/private_dot_gnupg/public/apt.hashicorp.sig
- /home/private_dot_ssh/endlessh/config.tmpl
- /home/private_dot_ssh/endlessh/run_onchange_after_endlessh.tmpl
- /home/private_dot_ssh/fail2ban/jail.local.tmpl
- /home/private_dot_ssh/fail2ban/run_onchange_after_fail2ban.tmpl
- /home/private_dot_ssh/system/banner
- /home/private_dot_ssh/system/run_onchange_after_sshd.tmpl
- /home/private_dot_ssh/system/sshd_config.tmpl
- /home/private_dot_ssh/private_ssh-mini.tmpl
- /home/private_dot_ssh/symlink_authorized_keys.tmpl
- /home/private_dot_ssh/private_ssh-audi.tmpl
- /home/private_dot_ssh/private_ssh-lab.pub.tmpl
- /home/private_dot_ssh/private_ssh-yellow.tmpl
- /home/private_dot_ssh/private_config.tmpl
- /home/private_dot_ssh/run_onchanges_after_generate-public-keys.tmpl
- /home/private_dot_ssh/private_ssh-fiat.tmpl
- /home/private_dot_ssh/private_ssh-blue.tmpl
- /home/private_dot_ssh/private_ssh-red.tmpl
- /home/private_dot_ssh/ssh-authorized_keys.yubikey.tmpl
- /home/private_dot_ssh/private_ssh-honda.tmpl
- /home/private_dot_ssh/authorized_keys.github.tmpl
- /home/private_dot_ssh/private_id_rsa.tmpl
- /home/private_dot_ssh/run_onchanges_after_ensure-private-key.tmpl
- /home/private_dot_ssh/private_ssh-lab.tmpl
- /home/.chezmoiscripts/universal/run_onchange_before_91-configure-gpg.tmpl
2023-02-01 16:40:47 +00:00

41 lines
1.4 KiB
Cheetah

{{- if ne .host.distro.family "windows" }}
#!/usr/bin/env bash
# jail.local hash: {{ include (joinPath .host.home ".ssh" "fail2ban" "jail.local") | sha256sum }}
{{ includeTemplate "universal/profile" }}
{{ includeTemplate "universal/logg" }}
### Restart fail2ban
function restartFail2Ban() {
if [ -d /Applications ] && [ -d /System ]; then
# macOS
logg info 'Enabling the `fail2ban` Homebrew service'
brew services start fail2ban
else
# Linux
logg info 'Enabling the `fail2ban` service'
sudo systemctl enable fail2ban
logg info 'Restarting the `fail2ban` service'
sudo systemctl restart fail2ban
fi
}
### Update the jail.local file if environment is not WSL
if [[ ! "$(grep Microsoft /proc/version)" ]]; then
if [ -d /etc/fail2ban ]; then
logg info 'Copying ~/.ssh/fail2ban/jail.local to /etc/fail2ban/jail.local'
sudo cp -f "$HOME/.ssh/fail2ban/jail.local" /etc/fail2ban/jail.local
restartFail2Ban
elif [ -d /usr/local/etc/fail2ban ]; then
logg info 'Copying ~/.ssh/fail2ban/jail.local to /usr/local/etc/fail2ban/jail.local'
sudo cp -f "$HOME/.ssh/fail2ban/jail.local" /usr/local/etc/fail2ban/jail.local
restartFail2Ban
else
logg warn 'Both the /etc/fail2ban (Linux) and the /usr/local/etc/fail2ban (macOS) folder do not exist'
fi
else
logg info 'Skipping sshd_config application since environment is WSL'
fi
{{ end -}}