about summary refs log tree commit diff
path: root/nixos/modules/services/networking/snowflake-proxy.nix
diff options
context:
space:
mode:
Diffstat (limited to 'nixos/modules/services/networking/snowflake-proxy.nix')
-rw-r--r--nixos/modules/services/networking/snowflake-proxy.nix2
1 files changed, 1 insertions, 1 deletions
diff --git a/nixos/modules/services/networking/snowflake-proxy.nix b/nixos/modules/services/networking/snowflake-proxy.nix
index 7299db7a53e82..ca015ed9d44bc 100644
--- a/nixos/modules/services/networking/snowflake-proxy.nix
+++ b/nixos/modules/services/networking/snowflake-proxy.nix
@@ -71,7 +71,7 @@ in
         RestrictNamespaces = true;
         RestrictRealtime = true;
         SystemCallArchitectures = "native";
-        SystemCallFilter = "~@clock @cpu-emulation @debug @mount @obsolete @reboot @swap @privileged @resources";
+        SystemCallFilter = [ "@system-service" "~@privileged" ];
         UMask = "0077";
       };
     };
generated by cgit-pink 1.4.1 (git 2.36.1) at 2024-07-21 13:11:42 +0000