3
0
Fork 0
forked from mirrors/nixpkgs
nixpkgs/nixos/modules/security
Jörg Thalheim e12188c0f2
nixos/systemd-confinment: use /var/empty as chroot mountpoint
bind mounting directories into the nix-store breaks nix commands.
In particular it introduces character devices that are not supported
by nix-store as valid files in the nix store. Use `/var/empty` instead
which is designated for these kind of use cases. We won't create any
files beause of the tmpfs mounted.
2021-07-01 08:01:18 +02:00
..
apparmor nixos/apparmor: improve code readability 2021-04-23 07:20:19 +02:00
wrappers Revert "Revert "apparmor: fix and improve the service"" 2021-04-23 07:17:55 +02:00
acme.nix nixos/acme: don't use --reuse-key 2021-06-01 00:43:45 +02:00
acme.xml docs: acme: Fix typo 2021-06-06 14:27:13 +02:00
apparmor.nix nixos/security/apparmor: utillinux -> util-linux 2021-05-17 17:14:08 +02:00
audit.nix
auditd.nix auditd service: make more useful 2019-06-10 18:55:11 +03:00
ca.nix nixos/security.pki: handle PEMs w/o a final newline 2021-05-16 17:23:11 -07:00
chromium-suid-sandbox.nix nixos/treewide: Move rename.nix imports to their respective modules 2019-12-10 02:51:19 +01:00
dhparams.nix dhparams module: add self as maintainer 2018-10-31 01:05:35 +09:00
doas.nix nixos/doas: add noLog option 2020-11-14 19:16:56 -08:00
duosec.nix treewide: fix modules options types where the default is null 2020-04-28 19:13:59 +02:00
google_oslogin.nix nixos/google-oslogin: add to system.nssDatabases.group too 2020-05-11 16:14:50 +02:00
lock-kernel-modules.nix nixos/lock-kernel-modules: add myself to maintainers 2018-10-15 01:33:30 +02:00
misc.nix nixos/apparmor: improve code readability 2021-04-23 07:20:19 +02:00
oath.nix [bot] nixos/*: remove unused arguments in lambdas 2018-07-20 20:56:59 +00:00
pam.nix Merge pull request #122674 from wakira/pam-order 2021-06-26 16:52:25 +02:00
pam_mount.nix nixos/pam_mount: add support for FUSE-filesystems (#126069) 2021-06-08 22:06:28 +02:00
pam_usb.nix [bot] treewide: remove unused 'inherit' in let blocks 2018-07-20 19:38:19 +00:00
polkit.nix nixos/polkit: remove root from adminIdentities 2019-12-09 19:11:09 -05:00
rngd.nix nixos/rngd: Remove module entirely, leave an explaination 2021-02-21 01:32:50 +01:00
rtkit.nix treewide: use attrs instead of list for types.loaOf options 2020-01-06 10:39:18 -05:00
sudo.nix nixos/sudo: add option execWheelOnly 2021-05-08 23:48:00 +02:00
systemd-confinement.nix nixos/systemd-confinment: use /var/empty as chroot mountpoint 2021-07-01 08:01:18 +02:00
tpm2.nix nixos: remove StandardOutput=syslog, StandardError=syslog lines 2020-08-13 18:49:15 +02:00