diff options
| author | Joachim Fasting <joachifm@fastmail.fm> | 2019-04-23 22:21:40 +0200 |
|---|---|---|
| committer | Joachim Fasting <joachifm@fastmail.fm> | 2019-05-07 13:45:39 +0200 |
| commit | 48ff4f119735dc60c3e2794a71b00757b838d877 (patch) | |
| tree | acc12f53c2de60d3baecb7f6dd1fa13c22fa3c21 /nixos/modules | |
| parent | a84be28270fe0d51d372f06d4c49ffc9ea9bf195 (diff) | |
| download | nixlib-48ff4f119735dc60c3e2794a71b00757b838d877.tar nixlib-48ff4f119735dc60c3e2794a71b00757b838d877.tar.gz nixlib-48ff4f119735dc60c3e2794a71b00757b838d877.tar.bz2 nixlib-48ff4f119735dc60c3e2794a71b00757b838d877.tar.lz nixlib-48ff4f119735dc60c3e2794a71b00757b838d877.tar.xz nixlib-48ff4f119735dc60c3e2794a71b00757b838d877.tar.zst nixlib-48ff4f119735dc60c3e2794a71b00757b838d877.zip | |
nixos/hardened: use graphene-hardened malloc by default
Diffstat (limited to 'nixos/modules')
| -rw-r--r-- | nixos/modules/profiles/hardened.nix | 2 |
1 files changed, 2 insertions, 0 deletions
diff --git a/nixos/modules/profiles/hardened.nix b/nixos/modules/profiles/hardened.nix index 9ab2ee87a19e..87bf66333c61 100644 --- a/nixos/modules/profiles/hardened.nix +++ b/nixos/modules/profiles/hardened.nix @@ -14,6 +14,8 @@ with lib; nix.allowedUsers = mkDefault [ "@users" ]; + environment.memoryAllocator.provider = mkDefault "graphene-hardened"; + security.hideProcessInformation = mkDefault true; security.lockKernelModules = mkDefault true; |