diff options
| -rw-r--r-- | nixos/modules/virtualisation/lxc-container.nix | 8 |
1 files changed, 8 insertions, 0 deletions
diff --git a/nixos/modules/virtualisation/lxc-container.nix b/nixos/modules/virtualisation/lxc-container.nix index 9cc5c829e12..d69ce4cf0bc 100644 --- a/nixos/modules/virtualisation/lxc-container.nix +++ b/nixos/modules/virtualisation/lxc-container.nix @@ -105,6 +105,14 @@ in extraCommands = "mkdir -p proc sys dev"; }); + # Add the overrides from lxd distrobuilder + systemd.extraConfig = '' + [Service] + ProtectProc=default + ProtectControlGroups=no + ProtectKernelTunables=no + ''; + # Allow the user to login as root without password. users.users.root.initialHashedPassword = mkOverride 150 ""; |