colin/nixpkgs
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
2de3c4bd78
nixpkgs/nixos
History
SLNOS 2de3c4bd78 nixos/tor: add tor-init service to fix directory ownerships, fix hardenings 
This reverts a part of 5bd12c694b.

Apparently there's no way to specify user for RuntimeDirectory in systemd
service file (it's always root) but tor won't create control socket if the dir
is owned by anybody except the tor user.

These hardenings were adopted from the upstream service file, checked
against systemd.service(5) and systemd.exec(5) manuals, and tested to
actually work with all the options enabled.

`PrivateDevices` implies `DevicePolicy=closed` according to systemd.exec(5),
removed.

`--RunAsDaemon 0` is the default value according to tor(5), removed.
2018-06-11 15:52:24 +00:00
..
doc Merge branch 'master' into nixos-evaluate 2018-06-10 11:10:11 -04:00
lib qemu-flags: default to qemu-kvm 2018-05-31 12:34:15 -04:00
maintainers Fix kernel crash caused by absent root device 2018-05-12 02:55:33 +03:00
modules nixos/tor: add tor-init service to fix directory ownerships, fix hardenings 2018-06-11 15:52:24 +00:00
tests nixos/tests/gnome3: switch to lightdm (#41742) 2018-06-09 22:02:48 +02:00
COPYING
default.nix nixos: export packages of the current configuration (its pkgs argument) 2018-02-09 19:35:27 +00:00
README
release-combined.nix nixos/release-combined: remove keymap tests from tested job 2018-06-06 21:02:55 +02:00
release-small.nix Add the boot test to release-small.nix 2018-02-27 20:09:07 +01:00
release.nix nixos/memcached: added simple set/get test 2018-06-09 02:11:15 +02:00

README 

*** NixOS ***

NixOS is a Linux distribution based on the purely functional package
management system Nix.  More information can be found at
http://nixos.org/nixos and in the manual in doc/manual.