about summary refs log tree commit diff
path: root/nixos/modules/services
diff options
context:
space:
mode:
authorJoachim Fasting <joachifm@fastmail.fm>2016-10-25 19:52:58 +0200
committerJoachim Fasting <joachifm@fastmail.fm>2016-10-27 14:15:52 +0200
commite94bd6f31dc6b551b28b479a992564d837e28b95 (patch)
tree2e9f939e5f98c5839eb69d1c42261b95924db2d0 /nixos/modules/services
parent5fba586650464528d5be247f29eef3fc05950ba5 (diff)
downloadnixlib-e94bd6f31dc6b551b28b479a992564d837e28b95.tar
nixlib-e94bd6f31dc6b551b28b479a992564d837e28b95.tar.gz
nixlib-e94bd6f31dc6b551b28b479a992564d837e28b95.tar.bz2
nixlib-e94bd6f31dc6b551b28b479a992564d837e28b95.tar.lz
nixlib-e94bd6f31dc6b551b28b479a992564d837e28b95.tar.xz
nixlib-e94bd6f31dc6b551b28b479a992564d837e28b95.tar.zst
nixlib-e94bd6f31dc6b551b28b479a992564d837e28b95.zip
cjdns service: protect /home and /tmp
Diffstat (limited to 'nixos/modules/services')
-rw-r--r--nixos/modules/services/networking/cjdns.nix3


1 files changed, 3 insertions, 0 deletions
diff --git a/nixos/modules/services/networking/cjdns.nix b/nixos/modules/services/networking/cjdns.nix
index c0955811e548..64d9ec215e40 100644
--- a/nixos/modules/services/networking/cjdns.nix
+++ b/nixos/modules/services/networking/cjdns.nix
@@ -248,6 +248,9 @@ in
       serviceConfig = {
         Type = "forking";
         Restart = "on-failure";
+
+        ProtectHome = true;
+        PrivateTmp = true;
       };
     };
 

 

generated by cgit-pink 1.4.1 (git 2.36.1) at 2024-07-05 19:46:02 +0000