Loading nixos/modules/services/misc/redmine.nix +3 −1 Original line number Diff line number Diff line Loading @@ -461,10 +461,12 @@ in CapabilityBoundingSet = ""; LockPersonality = true; MemoryDenyWriteExecute = true; MountAPIVFS = true; NoNewPrivileges = true; PrivateDevices = true; PrivateMounts = true; PrivateTmp = true; PrivateUsers = true; ProcSubset = "pid"; ProtectClock = true; ProtectControlGroups = "strict"; Loading @@ -473,7 +475,7 @@ in ProtectKernelLogs = true; ProtectKernelModules = true; ProtectKernelTunables = true; ProtectProc = "noaccess"; ProtectProc = "invisible"; ProtectSystem = "strict"; ReadWritePaths = [ cfg.stateDir Loading Loading
nixos/modules/services/misc/redmine.nix +3 −1 Original line number Diff line number Diff line Loading @@ -461,10 +461,12 @@ in CapabilityBoundingSet = ""; LockPersonality = true; MemoryDenyWriteExecute = true; MountAPIVFS = true; NoNewPrivileges = true; PrivateDevices = true; PrivateMounts = true; PrivateTmp = true; PrivateUsers = true; ProcSubset = "pid"; ProtectClock = true; ProtectControlGroups = "strict"; Loading @@ -473,7 +475,7 @@ in ProtectKernelLogs = true; ProtectKernelModules = true; ProtectKernelTunables = true; ProtectProc = "noaccess"; ProtectProc = "invisible"; ProtectSystem = "strict"; ReadWritePaths = [ cfg.stateDir Loading
