summary refs log tree commit diff
path: root/nixos/modules/security/apparmor-suid.nix
diff options
context:
space:
mode:
authorParnell Springmeyer <parnell@digitalmentat.com>2017-01-29 04:11:01 -0600
committerParnell Springmeyer <parnell@digitalmentat.com>2017-01-29 04:11:01 -0600
commit4aa0923009dac4d2307b5fe018b944180bfad6a2 (patch)
treef3a9ae5ddb0d772936dd1d53534fbe677e67a838 /nixos/modules/security/apparmor-suid.nix
parenta8cb2afa981099889cf47185be33f4a831ff482b (diff)
downloadnixlib-4aa0923009dac4d2307b5fe018b944180bfad6a2.tar
nixlib-4aa0923009dac4d2307b5fe018b944180bfad6a2.tar.gz
nixlib-4aa0923009dac4d2307b5fe018b944180bfad6a2.tar.bz2
nixlib-4aa0923009dac4d2307b5fe018b944180bfad6a2.tar.lz
nixlib-4aa0923009dac4d2307b5fe018b944180bfad6a2.tar.xz
nixlib-4aa0923009dac4d2307b5fe018b944180bfad6a2.tar.zst
nixlib-4aa0923009dac4d2307b5fe018b944180bfad6a2.zip
Getting rid of the var indirection and using a bin path instead
Diffstat (limited to 'nixos/modules/security/apparmor-suid.nix')
-rw-r--r--nixos/modules/security/apparmor-suid.nix3


1 files changed, 1 insertions, 2 deletions
diff --git a/nixos/modules/security/apparmor-suid.nix b/nixos/modules/security/apparmor-suid.nix
index e7b870864ee2..dfbf5d859ba9 100644
--- a/nixos/modules/security/apparmor-suid.nix
+++ b/nixos/modules/security/apparmor-suid.nix
@@ -19,7 +19,7 @@ with lib;
   config = mkIf (cfg.confineSUIDApplications) {
     security.apparmor.profiles = [ (pkgs.writeText "ping" ''
       #include <tunables/global>
-      /run/wrappers/ping {
+      /run/wrappers/bin/ping {
         #include <abstractions/base>
         #include <abstractions/consoles>
         #include <abstractions/nameservice>
@@ -33,7 +33,6 @@ with lib;
         ${pkgs.attr.out}/lib/libattr.so* mr,
 
         ${pkgs.iputils}/bin/ping mixr,
-        /run/wrappers/ping.real r,
 
         #/etc/modules.conf r,
 

 

generated by cgit-pink 1.4.1 (git 2.36.1) at 2024-06-09 18:45:45 +0000