alioth/nixpkgs
3
0
Fork 0
forked from mirrors/nixpkgs
Code Releases Activity
nixpkgs/nixos/modules
History
Alexey Shmalko fa4fe71105
docker: fix socket permissions 
Docker socket is world writable. This means any user on the system is
able to invoke docker command. (Which is equal to having a root access
to the machine.)

This commit makes socket group-writable and owned by docker group.

Inspired by
https://github.com/docker/docker/blob/master/contrib/init/systemd/docker.socket
2017-04-03 09:05:37 -04:00
..
config update-users-groups.pl: Keep track of deallocated UIDs/GIDs 2017-03-29 18:13:18 +02:00
hardware Merge pull request #17303 from peterhoeg/iio 2017-03-14 11:16:09 +08:00
i18n/input-method Remove top-level kde5 attribute 2017-02-27 11:49:10 -06:00
installer channel.nix: Use filterSource to exclude unnecessary files from nixpkgs 2017-03-25 01:42:28 +02:00
misc fcron: 3.1.2 -> 3.2.1 2017-03-05 22:41:11 +01:00
profiles nixos: fix renaming warning in graphical profile 2017-03-03 07:27:41 -06:00
programs nixos/treewide: systemd.time is in manvolume 7 2017-03-21 08:28:53 +01:00
security acme: Use chown -R for challenges directory. Fixes #24529. 2017-04-01 15:22:01 +02:00
services sshd.nix: Alternative fix for #19589 2017-03-31 16:18:58 +02:00
system initrd-ssh: Use initrd secrets for host keys 2017-04-02 16:33:37 -04:00
tasks network-interfaces: reload bridges on conf changes 2017-03-26 18:47:43 +02:00
testing kdm: drop service 2017-02-11 13:55:09 -05:00
virtualisation docker: fix socket permissions 2017-04-03 09:05:37 -04:00
module-list.nix quagga service: disable 2017-03-30 16:23:33 +02:00
rename.nix Merge branch 'master' into staging 2017-03-23 13:31:28 +01:00