nixbld: enable apparmor

This doesn't do much for now and apparmor support needs some work, but this enables the
kernel boot options so we can fix apparmor later without having to reboot the server.
This commit is contained in:
Sebastien Bourdeauducq 2019-09-16 09:32:58 +08:00
parent cf6173a240
commit bd9062421d

View File

@ -23,6 +23,8 @@ in
boot.loader.systemd-boot.enable = true; boot.loader.systemd-boot.enable = true;
boot.loader.efi.canTouchEfiVariables = true; boot.loader.efi.canTouchEfiVariables = true;
security.apparmor.enable = true;
networking = { networking = {
hostName = "nixbld"; hostName = "nixbld";
firewall = { firewall = {