nixpkgs

History

Niklas Sombert 1ee5a5b6ed nixos/sysctl: Enable Yama by default Yama is a LSM which restricts debugging. This prevents processes from snooping on another. It can be easily disabled with sysctl. This was initially included in #14392 and disabled by default by `86721a5f78`. This has been part of the hardened configuration, but many other distros ship this for quite some time (Ubuntu for about ten years), so I'd say it might make sense to enable this per default.		2023-10-19 21:44:12 +02:00
..
release-notes.md	23.11 is Tapir	2023-05-22 21:16:04 +02:00
rl-1310.section.md
rl-1404.section.md
rl-1412.section.md
rl-1509.section.md	doc,nixos/doc: unescape double quotes	2022-12-27 17:13:49 +01:00
rl-1603.section.md	doc,nixos/doc: unescape double quotes	2022-12-27 17:13:49 +01:00
rl-1609.section.md	nixos: fix typos	2023-05-19 22:31:04 -04:00
rl-1703.section.md	doc,nixos/doc: unescape apostrophes	2022-12-27 17:13:47 +01:00
rl-1709.section.md	nixos: fix typos	2023-05-19 22:31:04 -04:00
rl-1803.section.md	nixos: fix typos	2023-05-19 22:31:04 -04:00
rl-1809.section.md	doc,nixos/doc: unescape apostrophes	2022-12-27 17:13:47 +01:00
rl-1903.section.md	nixos: fix typos	2023-05-19 22:31:04 -04:00
rl-1909.section.md	nixos: fix typos	2023-05-19 22:31:04 -04:00
rl-2003.section.md	doc,nixos/doc: unescape apostrophes	2022-12-27 17:13:47 +01:00
rl-2009.section.md	nixos: fix typos	2023-05-19 22:31:04 -04:00
rl-2105.section.md	treewide: Fix typos	2023-09-28 19:06:13 +02:00
rl-2111.section.md	redis: use system jemalloc (#243398 )	2023-07-15 13:02:13 -05:00
rl-2205.section.md	nixos/modemmanager: enableFccUnlock -> enableBundledFccUnlockScripts	2023-09-12 16:55:15 +02:00
rl-2211.section.md	nixos/nextcloud: drop enableBrokenCiphersForSSE	2023-10-09 12:40:57 +02:00
rl-2305.section.md	treewide: Fix typos	2023-09-28 19:06:13 +02:00
rl-2311.section.md	nixos/sysctl: Enable Yama by default	2023-10-19 21:44:12 +02:00