forked from M-Labs/nix-scripts
nixbld: enable apparmor
This doesn't do much for now and apparmor support needs some work, but this enables the kernel boot options so we can fix apparmor later without having to reboot the server.tecpak
parent
cf6173a240
commit
bd9062421d
|
@ -23,6 +23,8 @@ in
|
|||
boot.loader.systemd-boot.enable = true;
|
||||
boot.loader.efi.canTouchEfiVariables = true;
|
||||
|
||||
security.apparmor.enable = true;
|
||||
|
||||
networking = {
|
||||
hostName = "nixbld";
|
||||
firewall = {
|
||||
|
|
Loading…
Reference in New Issue