diff --git a/services/fail2ban.nix b/services/fail2ban.nix
index c0e228a..b959a22 100644
--- a/services/fail2ban.nix
+++ b/services/fail2ban.nix
@@ -9,6 +9,7 @@ mkIf (elem "fail2ban" config.machine.services) {
     jails = { 
       DEFAULT = ''
         bantime  = 3600
+        ignoreip = 127.0.0.1
         logpath  = /var/log/auth.log
       '';
 
diff --git a/services/openssh.nix b/services/openssh.nix
index 72c7e09..3f14bce 100644
--- a/services/openssh.nix
+++ b/services/openssh.nix
@@ -17,7 +17,6 @@ mkIf (elem "openssh" config.machine.services) {
     permitRootLogin = "no";
     extraConfig = ''
         UsePAM no
-        UseRoaming no
         AllowUsers derped git nix-ssh
         UsePrivilegeSeparation sandbox
         LogLevel VERBOSE