Loading nixos/modules/services/networking/vdirsyncer.nix +1 −1 Original line number Diff line number Diff line Loading @@ -45,6 +45,7 @@ let } // (optionalAttrs (cfg'.user == null) { DynamicUser = true; ProtectHome = true; }) // (optionalAttrs (cfg'.additionalGroups != [ ]) { SupplementaryGroups = cfg'.additionalGroups; Loading @@ -63,7 +64,6 @@ let PrivateTmp = true; NoNewPrivileges = true; ProtectSystem = "strict"; ProtectHome = true; ProtectKernelTunables = true; ProtectKernelModules = true; ProtectControlGroups = true; Loading nixos/tests/vdirsyncer.nix +0 −7 Original line number Diff line number Diff line Loading @@ -217,13 +217,6 @@ import ./make-test-python.nix ( }; }; # ProtectHome is the default, but we must access our storage # in ~. systemd.services = { "vdirsyncer@alice".serviceConfig.ProtectHome = lib.mkForce false; "vdirsyncer@bob".serviceConfig.ProtectHome = lib.mkForce false; }; users.users = { alice.isNormalUser = true; bob.isNormalUser = true; Loading Loading
nixos/modules/services/networking/vdirsyncer.nix +1 −1 Original line number Diff line number Diff line Loading @@ -45,6 +45,7 @@ let } // (optionalAttrs (cfg'.user == null) { DynamicUser = true; ProtectHome = true; }) // (optionalAttrs (cfg'.additionalGroups != [ ]) { SupplementaryGroups = cfg'.additionalGroups; Loading @@ -63,7 +64,6 @@ let PrivateTmp = true; NoNewPrivileges = true; ProtectSystem = "strict"; ProtectHome = true; ProtectKernelTunables = true; ProtectKernelModules = true; ProtectControlGroups = true; Loading
nixos/tests/vdirsyncer.nix +0 −7 Original line number Diff line number Diff line Loading @@ -217,13 +217,6 @@ import ./make-test-python.nix ( }; }; # ProtectHome is the default, but we must access our storage # in ~. systemd.services = { "vdirsyncer@alice".serviceConfig.ProtectHome = lib.mkForce false; "vdirsyncer@bob".serviceConfig.ProtectHome = lib.mkForce false; }; users.users = { alice.isNormalUser = true; bob.isNormalUser = true; Loading
