about summary refs log tree commit diff
path: root/nixos/modules/security/systemd-confinement.nix
AgeCommit message (Expand)AuthorFilesLines
2024-05-13nixos/confinement: Use prio 100 for RootDirectoryaszlig1-1/+1
2024-05-13nixos/systemd-confinement: Make / read-onlyaszlig1-0/+1
2024-05-13nixos/systemd-confinement: support ProtectSystem=/DynamicUser=Julien Moutinho1-14/+21
2024-04-13nixos: remove all uses of lib.mdDocstuebinm1-5/+5
2023-01-20nixos/systemd-confinement: remove unused rootNameWei Tang1-1/+0
2022-08-31nixos/*: convert options with admonitions to MDpennae1-16/+18
2022-08-06nixos/*: automatically convert option docspennae1-8/+8
2022-08-05nixos/*: normalize manpage references to single-line formpennae1-12/+5
2022-06-12treewide: attempt at markdown option docspennae1-5/+6
2022-03-02nixos/systemd-confinement: Allow shipped unit fileaszlig1-2/+2
2021-11-20Move systemd-lib.nix and systemd-unit-options.nix into utilsWill Fancher1-4/+2
2021-10-04nixos/doc: clean up defaults and examplesNaïm Favier1-2/+2
2021-07-01nixos/systemd-confinment: use /var/empty as chroot mountpointJörg Thalheim1-1/+1
2020-10-14confinement: fix assert for serviceConfig.ProtectSystemDominique Martinet1-1/+1
2020-09-06systemd-confinement: handle ExecStarts etc being listsDominique Martinet1-1/+1
2020-05-10nixos/confinement: add conflict for ProtectSystem service optionDominique Martinet1-0/+5
2019-03-27nixos/confinement: Use PrivateMounts optionaszlig1-1/+1
2019-03-27nixos/confinement: Remove handling for StartOnlyaszlig1-7/+2
2019-03-15nixos/confinement: Explicitly set serviceConfigaszlig1-8/+20
2019-03-14nixos/confinement: Allow to include the full unitaszlig1-3/+24
2019-03-14nixos/confinement: Allow to configure /bin/shaszlig1-12/+23
2019-03-14nixos/systemd-chroot: Rename chroot to confinementaszlig1-0/+160
generated by cgit-pink 1.4.1 (git 2.36.1) at 2024-08-31 15:56:51 +0000