From 9c6964031f898b8fe3c0103a1f3cdb0bbbc34364 Mon Sep 17 00:00:00 2001
From: OCbwoy3 <ocbwoy3@ocbwoy3.dev>
Date: Mon, 18 Aug 2025 18:02:51 +0300
Subject: [PATCH] Classic CERT.LV moment

---
 hosts/default/configuration.nix | 10 +++++-----
 hosts/server/configuration.nix  |  6 +++++-
 modules/nixos/programs.nix      |  3 ++-
 3 files changed, 12 insertions(+), 7 deletions(-)

diff --git a/hosts/default/configuration.nix b/hosts/default/configuration.nix
index cf2b000..b511949 100644
--- a/hosts/default/configuration.nix
+++ b/hosts/default/configuration.nix
@@ -70,12 +70,12 @@
 			splix
 			hplip
 		];
-		webInterface = true;
+		webInterface = false;
 		listenAddresses = [ "*:631" ];
-		allowFrom = [ "all" ];
-		browsing = true;
-		defaultShared = true;
-		openFirewall = true;
+		allowFrom = [ "localhost" ];
+		browsing = false;
+		defaultShared = false;
+		openFirewall = false;
 	};
 
 	programs.virt-manager.enable = true;
diff --git a/hosts/server/configuration.nix b/hosts/server/configuration.nix
index f5d98d5..48bc289 100644
--- a/hosts/server/configuration.nix
+++ b/hosts/server/configuration.nix
@@ -15,7 +15,11 @@
 
 	virtualisation.docker.enable = true;
 
-	networking.firewall.allowedTCPPorts = [ 22 ];
+	networking.firewall = {
+		enable = true;
+		allowedTCPPorts = [ 8080 443 25565 ];
+		allowedUDPPorts = [  ];
+	}
 
 	catppuccin = {
 		enable = true;
diff --git a/modules/nixos/programs.nix b/modules/nixos/programs.nix
index 262b5c0..14a8f75 100644
--- a/modules/nixos/programs.nix
+++ b/modules/nixos/programs.nix
@@ -40,7 +40,8 @@
 
 	services.openssh = {
 		enable = true;
-		banner = "please fuck off\n";
+		ports = [ ];
+		banner = "bro fuck off";
 	};
 
 	security.sudo.enable =  true;