forked from M-Labs/nix-scripts
nixbld: enable apparmor
This doesn't do much for now and apparmor support needs some work, but this enables the kernel boot options so we can fix apparmor later without having to reboot the server.
This commit is contained in:
parent
cf6173a240
commit
bd9062421d
|
@ -23,6 +23,8 @@ in
|
||||||
boot.loader.systemd-boot.enable = true;
|
boot.loader.systemd-boot.enable = true;
|
||||||
boot.loader.efi.canTouchEfiVariables = true;
|
boot.loader.efi.canTouchEfiVariables = true;
|
||||||
|
|
||||||
|
security.apparmor.enable = true;
|
||||||
|
|
||||||
networking = {
|
networking = {
|
||||||
hostName = "nixbld";
|
hostName = "nixbld";
|
||||||
firewall = {
|
firewall = {
|
||||||
|
|
Loading…
Reference in New Issue