colin/nix-files
1
0
Fork 1
Code Issues Pull Requests Projects Releases Wiki Activity

programs: htop/iotop/iftop: sandbox

Browse Source
This commit is contained in:
Colin
2024-02-16 04:51:18 +00:00
parent 4e5e4219ec
commit 9d252d095e
1 changed files with 18 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

18
hosts/common/programs/assorted.nix
View File

@@ -380,6 +380,24 @@ in
hase.sandbox.whitelistDri = true; hase.sandbox.whitelistDri = true;
hase.sandbox.whitelistWayland = true; hase.sandbox.whitelistWayland = true;
htop.sandbox.method = "landlock";
htop.sandbox.wrapperType = "wrappedDerivation";
htop.sandbox.extraPaths = [
"/proc"
"/sys/devices"
];
iftop.sandbox.method = "landlock";
iftop.sandbox.wrapperType = "wrappedDerivation";
iftop.sandbox.capabilities = [ "net_raw" ];
iotop.sandbox.method = "landlock";
iotop.sandbox.wrapperType = "wrappedDerivation";
iotop.sandbox.extraPaths = [
"/proc"
];
iotop.sandbox.capabilities = [ "net_admin" ];
inkscape.sandbox.method = "bwrap"; inkscape.sandbox.method = "bwrap";
inkscape.sandbox.wrapperType = "wrappedDerivation"; inkscape.sandbox.wrapperType = "wrappedDerivation";
inkscape.sandbox.whitelistWayland = true; inkscape.sandbox.whitelistWayland = true;