movefasta/nixpkgs
0
0
Fork 0
mirror of https://github.com/NixOS/nixpkgs.git synced 2025-07-14 06:00:33 +03:00
Code Activity

privoxy service: additional isolation

Browse source
This commit is contained in:
Joachim Fasting 2016-12-05 12:25:31 +01:00
parent 54cea02d90
commit ad88f1040e
No known key found for this signature in database
GPG key ID: 7544761007FE4E08
1 changed files with 5 additions and 0 deletions
Download patch file Download diff file Expand all files Collapse all files

5
nixos/modules/services/networking/privoxy.nix
View file

@ -100,6 +100,11 @@ in
after = [ "network.target" "nss-lookup.target" ]; after = [ "network.target" "nss-lookup.target" ];
wantedBy = [ "multi-user.target" ]; wantedBy = [ "multi-user.target" ];
serviceConfig.ExecStart = "${privoxy}/sbin/privoxy --no-daemon --user ${privoxyUser} ${confFile}"; serviceConfig.ExecStart = "${privoxy}/sbin/privoxy --no-daemon --user ${privoxyUser} ${confFile}";
serviceConfig.PrivateDevices = true;
serviceConfig.PrivateTmp = true;
serviceConfig.ProtectHome = true;
serviceConfig.ProtectSystem = "full";
}; };
}; };