Init security tracker domain and monitoring

[Erethon]

This is a PR to setup the Nixpkgs Security Tracker on the nixos.org domain.

On the surface this PR is very simple as it only:

• Creates a new A record for tracker.security.nixos.org that points to a Hetzner Cloud VM host (188.245.41.195)
• Adds monitoring for this domain

The VM is part of the nixpkgs-security-tracker Hetzner Cloud project which @zimbatm gave me access to a while ago.

The configuration of this host will eventually be here, but please note that this draft PR contains the important bits for now and isn't merged yet as it depends on having a .nixos.org domain for the host.

I've copy-pasted ssh-keys.nix as it exists in commit 0d476c9, so everyone from the (current) infra team has access to the host as root.

I think if this is merged and applied as is, we'll get an alert for the domain. If we don't mind that, this is the simplest option to move forward as I'll be able to generate a certificate for tracker.security.nixos.org then and the alert will go away. Otherwise, we can first only apply the Terraform DNS change and later the Prometheus change to avoid the alert.

[Mic92]

Depends on #519

[mweinelt]

DNS changes applied.

[Erethon]

Thank you both! I've configured the host to use that domain now, so feel free to apply the prometheus changes whenever you have the time.

[mweinelt]

Also applied.