diff options
| author | rnhmjoj <rnhmjoj@inventati.org> | 2021-06-10 01:47:55 +0200 |
|---|---|---|
| committer | rnhmjoj <rnhmjoj@inventati.org> | 2021-09-13 13:48:13 +0200 |
| commit | 8f76a6eefcfa0c9904e0749f04b27090527ce09f (patch) | |
| tree | 47b535a13e66b65d02be6bd72111c34ed560b2fd /nixos/modules/programs | |
| parent | 41a498578e612cf34e2aa60eb0d8fc6a5b0d4d79 (diff) | |
| download | nixpkgs-8f76a6eefcfa0c9904e0749f04b27090527ce09f.tar nixpkgs-8f76a6eefcfa0c9904e0749f04b27090527ce09f.tar.gz nixpkgs-8f76a6eefcfa0c9904e0749f04b27090527ce09f.tar.bz2 nixpkgs-8f76a6eefcfa0c9904e0749f04b27090527ce09f.tar.lz nixpkgs-8f76a6eefcfa0c9904e0749f04b27090527ce09f.tar.xz nixpkgs-8f76a6eefcfa0c9904e0749f04b27090527ce09f.tar.zst nixpkgs-8f76a6eefcfa0c9904e0749f04b27090527ce09f.zip | |
nixos: add implict security.wrappers options
This is to keep the same permissions/setuid/setgid as before the change in security.wrappers defaults.
Diffstat (limited to 'nixos/modules/programs')
| -rw-r--r-- | nixos/modules/programs/ccache.nix | 2 | ||||
| -rw-r--r-- | nixos/modules/programs/msmtp.nix | 2 | ||||
| -rw-r--r-- | nixos/modules/programs/ssmtp.nix | 2 |
3 files changed, 6 insertions, 0 deletions
diff --git a/nixos/modules/programs/ccache.nix b/nixos/modules/programs/ccache.nix index d672e1da017..35a4373f612 100644 --- a/nixos/modules/programs/ccache.nix +++ b/nixos/modules/programs/ccache.nix @@ -28,7 +28,9 @@ in { # "nix-ccache --show-stats" and "nix-ccache --clear" security.wrappers.nix-ccache = { + owner = "nobody"; group = "nixbld"; + setuid = false; setgid = true; source = pkgs.writeScript "nix-ccache.pl" '' #!${pkgs.perl}/bin/perl diff --git a/nixos/modules/programs/msmtp.nix b/nixos/modules/programs/msmtp.nix index 217060e6b3b..9c067bdc969 100644 --- a/nixos/modules/programs/msmtp.nix +++ b/nixos/modules/programs/msmtp.nix @@ -78,6 +78,8 @@ in { source = "${pkgs.msmtp}/bin/sendmail"; setuid = false; setgid = false; + owner = "root"; + group = "root"; }; environment.etc."msmtprc".text = let diff --git a/nixos/modules/programs/ssmtp.nix b/nixos/modules/programs/ssmtp.nix index 8b500f0383f..e28a14538ec 100644 --- a/nixos/modules/programs/ssmtp.nix +++ b/nixos/modules/programs/ssmtp.nix @@ -181,6 +181,8 @@ in source = "${pkgs.ssmtp}/bin/sendmail"; setuid = false; setgid = false; + owner = "root"; + group = "root"; }; }; |