programs/tcpdump: move to own file
This commit is contained in:
@@ -1179,11 +1179,6 @@ in
|
|||||||
systemctl.sandbox.capabilities = [ "cap_dac_override" "cap_sys_admin" ];
|
systemctl.sandbox.capabilities = [ "cap_dac_override" "cap_sys_admin" ];
|
||||||
systemctl.sandbox.keepPidsAndProc = true;
|
systemctl.sandbox.keepPidsAndProc = true;
|
||||||
|
|
||||||
tcpdump.sandbox.net = "all";
|
|
||||||
tcpdump.sandbox.autodetectCliPaths = "existingFileOrParent";
|
|
||||||
tcpdump.sandbox.capabilities = [ "net_admin" "net_raw" ];
|
|
||||||
tcpdump.sandbox.tryKeepUsers = true;
|
|
||||||
|
|
||||||
tdesktop.persist.byStore.private = [ ".local/share/TelegramDesktop" ];
|
tdesktop.persist.byStore.private = [ ".local/share/TelegramDesktop" ];
|
||||||
|
|
||||||
tokodon.buildCost = 1;
|
tokodon.buildCost = 1;
|
||||||
|
@@ -213,6 +213,7 @@
|
|||||||
./switchboard.nix
|
./switchboard.nix
|
||||||
./syshud.nix
|
./syshud.nix
|
||||||
./tangram.nix
|
./tangram.nix
|
||||||
|
./tcpdump.nix
|
||||||
./tor-browser.nix
|
./tor-browser.nix
|
||||||
./tuba.nix
|
./tuba.nix
|
||||||
./unl0kr
|
./unl0kr
|
||||||
|
8
hosts/common/programs/tcpdump.nix
Normal file
8
hosts/common/programs/tcpdump.nix
Normal file
@@ -0,0 +1,8 @@
|
|||||||
|
{ ... }: {
|
||||||
|
sane.programs.tcpdump = {
|
||||||
|
sandbox.net = "all";
|
||||||
|
sandbox.autodetectCliPaths = "existingFileOrParent";
|
||||||
|
sandbox.capabilities = [ "net_admin" "net_raw" ];
|
||||||
|
sandbox.tryKeepUsers = true;
|
||||||
|
};
|
||||||
|
}
|
Reference in New Issue
Block a user