nixpkgs

mirror of https://github.com/NixOS/nixpkgs.git synced 2024-11-23 15:33:13 +00:00

History

Niklas Sombert 1ee5a5b6ed nixos/sysctl: Enable Yama by default Yama is a LSM which restricts debugging. This prevents processes from snooping on another. It can be easily disabled with sysctl. This was initially included in #14392 and disabled by default by `86721a5f78`. This has been part of the hardened configuration, but many other distros ship this for quite some time (Ubuntu for about ten years), so I'd say it might make sense to enable this per default.		2023-10-19 21:44:12 +02:00
..
keys	darwin.builder: init	2022-12-19 17:03:45 -08:00
all-hardware.nix	Merge pull request #98633 from DavHau/patch-1	2022-12-01 16:07:29 +01:00
base.nix	nixos/profiles/base: remove duplicate and optimize fsPackages	2023-03-03 23:32:48 +03:00
clone-config.nix	nixos/*: automatically convert option docs	2022-08-06 20:39:12 +02:00
demo.nix
docker-container.nix	nixos/docker-image: clean up let-in binding	2022-11-30 17:27:23 -05:00
graphical.nix
hardened.nix	nixos/sysctl: Enable Yama by default	2023-10-19 21:44:12 +02:00
headless.nix	headless: Don't use deprecated vesa.	2022-06-22 19:39:54 +02:00
installation-device.nix	systemd-stage-1: Default to full systemd build.	2023-10-04 04:21:35 -04:00
macos-builder.nix	darwin.linux-builder: Expose nixosConfig and nixosOptions attributes	2023-10-12 23:10:41 +02:00
minimal.nix	nixos/profiles/minimal: disable udisks service	2022-12-09 13:03:49 +03:00
qemu-guest.nix	nixos/qemu: Add systemd initrd support	2022-04-30 20:47:42 +02:00