summaryrefslogtreecommitdiffstats
path: root/nixos/modules/profiles
AgeCommit message (Expand)Author
2020-04-05Revert "nixos/hardened: build sandbox incompatible with namespaces"Florian Klink
2020-04-03Merge pull request #73763 from kmcopper/hardening-profileJoachim F
2020-03-24Remove unused 'rogue' serviceEelco Dolstra
2020-03-24services/misc/nixos-manual.nix: RemoveEelco Dolstra
2019-11-26nixos/hardened: scudo default allocator. zero by default allow override.Kyle Copperfield
2019-11-22nixos/plasma5: drop enableQt4Support optionJan Tojnar
2019-11-19nixos/hardened: build sandbox incompatible with namespacesKyle Copperfield
2019-11-11profiles/graphical.nix: Drop systemWide pulseaudio in isoElis Hirwing
2019-10-16Revert "installer: Disable udisks"Franz Pletz
2019-10-12nixos/hardened: blacklist old filesystems (#70482)Joachim F
2019-09-18qemu-guest: allow to override security.rngdMatthieu Coudron
2019-08-31Merge pull request #63773 from flokli/installation-device-fixesFlorian Klink
2019-08-19Merge pull request #66687 from joachifm/feat/hardened-nixos-revert-graphene-m...Marek Mahut
2019-08-19nixos/installation-device.nix: explain sshd usageFlorian Klink
2019-08-18nixos/systemd: install sysctl snippetsFlorian Klink
2019-08-15Revert "nixos/hardened: use graphene-hardened malloc by default"Joachim Fasting
2019-08-15nixos-hardened: disable unprivileged userfaultfd syscallsJoachim Fasting
2019-08-15nixos-hardened: enable page alloc randomizationJoachim Fasting
2019-08-12installer: Don't run as rootworldofpeace
2019-07-30nixos/hardened: make pti=on overridablePierre Bourdon
2019-07-19Renaming security.virtualization.flushL1DataCache to virtualisationMarek Mahut
2019-07-04nixos/hardened: harder inet defaultsJoachim Fasting
2019-07-04nixos/hardened: disable ftrace by defaultJoachim Fasting
2019-05-07nixos/hardened: use graphene-hardened malloc by defaultJoachim Fasting
2019-02-22profiles/graphical.nix: Enable pulseaudio for virtualbox appliancesElis Hirwing
2019-01-31types.optionSet: deprecate and remove last usagesdanbst
2019-01-13modules/profiles/minimal: sound is disabled by defaultProfpatsch
2019-01-05nixos/hardened profile: always enable ptiJoachim Fasting
2019-01-05nixos/hardened profile: slab/slub hardeningJoachim Fasting
2018-12-27nixos/security/misc: expose SMT control optionJoachim Fasting
2018-12-27nixos/security/misc: expose l1tf mitigation optionJoachim Fasting
2018-12-27nixos/security/misc: factor out protectKernelImageJoachim Fasting
2018-11-26Revert "zfs cannot be distributed. Disabling it in the isos."Graham Christensen
2018-11-26Merge branch 'master' of https://github.com/nixos/nixpkgs into tarball-closur...Ding Xiang Fei
2018-11-24nixos/hardened: restrict access to nix daemonJoachim Fasting
2018-11-14Merge branch 'master' of https://github.com/nixos/nixpkgs into tarball-closur...Ding Xiang Fei
2018-11-07use closure-info for building system tarballDing Xiang Fei
2018-10-30Merge pull request #49326 from c0bw3b/nixos/installation-deviceEelco Dolstra
2018-10-28Merge pull request #48801 from matthewbauer/cloneConfigExtraMatthew Bauer
2018-10-28installation-device: set GC initial heap size to 1MBRenaud
2018-10-27nixos/installation-device: Move systemPackages additions to profiles/baseTuomas Tynkkynen
2018-10-27nixos/installer: Drop extra copy of w3mTuomas Tynkkynen
2018-10-21ova: add cloneConfigExtra optionMatthew Bauer
2018-10-15Merge pull request #48439 from joachifm/hardened-miscJoachim F
2018-10-15nixos/security/misc: initJoachim Fasting
2018-10-15nixos/hardened: add myself to maintainersJoachim Fasting
2018-09-25nixos: Fix eval error for documentation.nixosaszlig
2018-09-25Merge pull request #47298 from oxij/nixos/doc-in-installerMichael Raskin
2018-09-24Merge pull request #47296 from matthewbauer/closure-size-reductionsxeji
2018-09-24nixos: doc: fix minimal profile and installer configsJan Malakhovski
generated by cgit v1.2.3 (git 2.25.1) at 2024-07-17 12:53:26 +0000