From f133e8f19a46518e90684fa51310230186f2c714 Mon Sep 17 00:00:00 2001
From: waveringana <ana@nekomimi.pet>
Date: Sun, 17 Aug 2025 02:15:06 -0400
Subject: [PATCH] remove jail

---
 hosts/baal/default.nix    | 14 --------------
 hosts/buer/default.nix    | 14 --------------
 hosts/valefar/default.nix | 14 --------------
 3 files changed, 42 deletions(-)

diff --git a/hosts/baal/default.nix b/hosts/baal/default.nix
index aae4278..b4d1ea4 100644
--- a/hosts/baal/default.nix
+++ b/hosts/baal/default.nix
@@ -47,20 +47,6 @@
       maxtime = "168h"; # Do not ban for more than 1 week
       overalljails = true; # Calculate the bantime based on all the violations
     };
-    jails = {
-      apache-nohome-iptables.settings = {
-        # Block an IP address if it accesses a non-existent
-        # home directory more than 5 times in 10 minutes,
-        # since that indicates that it's scanning.
-        filter = "apache-nohome";
-        action = ''iptables-multiport[name=HTTP, port="http,https"]'';
-        logpath = "/var/log/httpd/error_log*";
-        backend = "auto";
-        findtime = 600;
-        bantime  = 600;
-        maxretry = 5;
-      };
-    };
   };
 
   virtualisation.docker = {
diff --git a/hosts/buer/default.nix b/hosts/buer/default.nix
index a487b6f..50d615f 100755
--- a/hosts/buer/default.nix
+++ b/hosts/buer/default.nix
@@ -80,20 +80,6 @@
       maxtime = "168h"; # Do not ban for more than 1 week
       overalljails = true; # Calculate the bantime based on all the violations
     };
-    jails = {
-      apache-nohome-iptables.settings = {
-        # Block an IP address if it accesses a non-existent
-        # home directory more than 5 times in 10 minutes,
-        # since that indicates that it's scanning.
-        filter = "apache-nohome";
-        action = ''iptables-multiport[name=HTTP, port="http,https"]'';
-        logpath = "/var/log/httpd/error_log*";
-        backend = "auto";
-        findtime = 600;
-        bantime  = 600;
-        maxretry = 5;
-      };
-    };
   };
 
   # Static IP configuration via systemd-networkd
diff --git a/hosts/valefar/default.nix b/hosts/valefar/default.nix
index 7dd6797..7ca1a4d 100755
--- a/hosts/valefar/default.nix
+++ b/hosts/valefar/default.nix
@@ -276,20 +276,6 @@
       maxtime = "168h"; # Do not ban for more than 1 week
       overalljails = true; # Calculate the bantime based on all the violations
     };
-    jails = {
-      apache-nohome-iptables.settings = {
-        # Block an IP address if it accesses a non-existent
-        # home directory more than 5 times in 10 minutes,
-        # since that indicates that it's scanning.
-        filter = "apache-nohome";
-        action = ''iptables-multiport[name=HTTP, port="http,https"]'';
-        logpath = "/var/log/httpd/error_log*";
-        backend = "auto";
-        findtime = 600;
-        bantime  = 600;
-        maxretry = 5;
-      };
-    };
   };
 
   # =============================================================================