diff options
Diffstat (limited to 'nixos/modules/programs/traceroute.nix')
| -rw-r--r-- | nixos/modules/programs/traceroute.nix | 28 |
1 files changed, 28 insertions, 0 deletions
diff --git a/nixos/modules/programs/traceroute.nix b/nixos/modules/programs/traceroute.nix new file mode 100644 index 00000000000..6e04057ac50 --- /dev/null +++ b/nixos/modules/programs/traceroute.nix @@ -0,0 +1,28 @@ +{ config, lib, pkgs, ... }: + +with lib; + +let + cfg = config.programs.traceroute; +in { + options = { + programs.traceroute = { + enable = mkOption { + type = types.bool; + default = false; + description = '' + Whether to configure a setcap wrapper for traceroute. + ''; + }; + }; + }; + + config = mkIf cfg.enable { + security.wrappers.traceroute = { + owner = "root"; + group = "root"; + capabilities = "cap_net_raw+p"; + source = "${pkgs.traceroute}/bin/traceroute"; + }; + }; +} |