diff options
Diffstat (limited to 'nixos/modules/security/permissions-wrappers/default.nix')
| -rw-r--r-- | nixos/modules/security/permissions-wrappers/default.nix | 7 |
1 files changed, 0 insertions, 7 deletions
diff --git a/nixos/modules/security/permissions-wrappers/default.nix b/nixos/modules/security/permissions-wrappers/default.nix index 585e4a13be61..480bd371040e 100644 --- a/nixos/modules/security/permissions-wrappers/default.nix +++ b/nixos/modules/security/permissions-wrappers/default.nix @@ -92,13 +92,6 @@ in capabilities!! This may be too restrictive for cases in which the real program needs cap_setpcap but it at least leans on the side security paranoid vs. too relaxed. - - The attribute `setcap` defaults to false and it will create a - wrapper program but never set the capability set on it. This - is done so that you can remove a capability sent entirely from - a wrapper program without also needing to go change any - absolute paths that may be directly referencing the wrapper - program. ''; }; |