nordic-dev.net/nixpkgs
nordic-dev.net/nixpkgs
2
0
Fork 0
mirror of https://github.com/NixOS/nixpkgs.git synced 2024-11-30 02:42:59 +00:00
Code Issues Packages Projects Releases Wiki Activity
a432668acf
nixpkgs/nixos/modules/services
History
rnhmjoj a432668acf
dhcpcd: disable privsep by default 
The priviledge separation mode has several downsides:

  - it's incompatible with alternative memory allocators, including
    graphene-hardened;

  - it needs an unreleased patch to fix a crash;

  - it results in none less than 6 subprocesses running at any time,
    increasing the memory usage;

  - the privileged process (albeit not doing any networking related
    tasks) is still running as root, so it has complete access to the
    system.

Let's disable this by default and instead run dhcpcd as an unpriviledge
user with only the necessary capabilities.
2024-09-16 01:23:54 +02:00
..
accessibility nixos/orca: init very simple module 2024-09-05 10:55:34 +03:00
admin nixos/services.pgadmin: remove with lib; 2024-09-15 10:43:46 +02:00
amqp nixos/services.rabbitmq: remove with lib; 2024-08-30 00:30:38 +02:00
audio nixos/services.mpd: remove with lib; (#339100) 2024-09-11 17:22:14 +02:00
backup nixos/services.zrepl: remove with lib; 2024-09-15 10:43:47 +02:00
blockchain/ethereum nixos/services.lighthouse: remove with lib; 2024-09-15 10:43:47 +02:00
cluster nixos/services.spark: remove with lib; 2024-09-15 10:43:48 +02:00
computing nixos/services.torque.server: remove with lib; 2024-09-15 10:43:48 +02:00
continuous-integration nixos/services.buildbot-master: remove with lib; 2024-09-15 10:43:48 +02:00
databases nixos/neo4j: always set http values, even when disabled (#341586) 2024-09-15 12:42:20 +02:00
desktop-managers nixos/lomiri: Add bluetooth indicator 2024-09-06 12:08:10 +02:00
desktops nixos/services.bamf: remove with lib; 2024-09-15 10:43:48 +02:00
development nixos/services.zammad: remove with lib; (#338051) 2024-09-02 21:42:59 +02:00
display-managers nixos/services.greetd: remove with lib; 2024-08-30 00:30:45 +02:00
editors nixos/services.infinoted: remove with lib; 2024-08-30 00:30:46 +02:00
finance nixos/services.odoo: remove with lib; 2024-08-30 00:30:46 +02:00
games nixos/teeworlds: use lib.getExe instead of hardcoded path 2024-09-10 11:40:24 +02:00
hardware nixos/services.thinkfan: fix undefined variables 2024-09-03 10:42:28 +02:00
home-automation nixos/services.zwave-js: remove with lib; 2024-08-30 00:30:55 +02:00
logging nixos/services.vector: remove with lib; 2024-08-30 00:30:58 +02:00
mail nixos/services.rss2email: remove with lib; 2024-09-15 10:43:49 +02:00
matrix nixos/dendrite: fix broken example conf link 2024-09-15 21:31:37 +09:00
misc nixos/services.gogs: remove with lib; 2024-09-15 10:43:49 +02:00
monitoring nixos/ups: set env vars in the global environment 2024-09-11 21:14:48 +02:00
network-filesystems nixos/network-filesystems/samba: fix eval 2024-09-15 11:02:11 +02:00
networking dhcpcd: disable privsep by default 2024-09-16 01:23:54 +02:00
printing
scheduling
search
security nixos/endlessh-go: fix firewall bugs (#339701) 2024-09-07 10:22:25 +00:00
system nixos/nix-daemon: Enable cgroups delegation (#339310) 2024-09-13 16:08:29 +03:00
torrent
tracing
ttys
video treewide: optimistically unpin FFmpeg 7 dependencies 2024-09-07 20:31:41 +01:00
wayland nixos/hypridle: switch to package provided user service file 2024-08-17 20:51:36 +05:30
web-apps nixos/windmill: add database.url option and defaults 2024-09-14 00:36:55 +03:00
web-servers nixos/caddy: restart caddy on config change when "enableReload" is turned off (#335983) 2024-09-07 22:22:24 +07:00
x11 nixos/services.xserver.desktopManager.phosh: remove with lib; 2024-09-11 22:25:00 +02:00