summaryrefslogtreecommitdiff
path: root/modules/security/default.nix
diff options
context:
space:
mode:
Diffstat (limited to 'modules/security/default.nix')
-rw-r--r--modules/security/default.nix12
1 files changed, 6 insertions, 6 deletions
diff --git a/modules/security/default.nix b/modules/security/default.nix
index 06302ea..48cc702 100644
--- a/modules/security/default.nix
+++ b/modules/security/default.nix
@@ -3,22 +3,22 @@
lib,
...
}:
-let
- inherit (lib.modules) mkForce;
-in
{
imports = [
+ ./apparmor.nix
./audit.nix
./doas.nix
+ ./kernel.nix
+ ./pam.nix
./pki.nix
./polkit.nix
./sudo.nix
- ./tpm.nix
];
security = {
- auditd.enable = true;
- rtkit.enable = mkForce config.services.pipewire.enable;
+ rtkit.enable = lib.modules.mkForce config.services.pipewire.enable;
virtualisation.flushL1DataCache = "always";
};
+
+ programs.firejail.enable = true;
}
generated by cgit v1.2.3 (git 2.25.1) at 2026-05-11 08:01:38 +0000