8.nix-darwin

History

Daiderd Jordan 1e67f6a2bc sandbox: add module for sandbox profiles This could be used outside of nix-darwin, but this is mainly useful for services since all of the inputs are known there. { # $ /usr/bin/sandbox-exec -f $profile $coreutils/bin/ls / # ls: cannot access '/': Operation not permitted security.sandbox.profiles.example.closure = [ pkgs.coreutils ]; }	2019-02-16 16:55:07 +01:00
..
pki	security.pki: add module to configure ca certificates	2019-01-15 21:55:08 +01:00
sandbox	sandbox: add module for sandbox profiles	2019-02-16 16:55:07 +01:00

sandbox: add module for sandbox profiles

This could be used outside of nix-darwin, but this is mainly useful for
services since all of the inputs are known there.

	{
	  # $ /usr/bin/sandbox-exec -f $profile $coreutils/bin/ls /
	  # ls: cannot access '/': Operation not permitted
	  security.sandbox.profiles.example.closure = [ pkgs.coreutils ];
	}

2019-02-16 16:55:07 +01:00

pki

security.pki: add module to configure ca certificates

2019-01-15 21:55:08 +01:00

sandbox

sandbox: add module for sandbox profiles

2019-02-16 16:55:07 +01:00