13 lines
194 B
Nix
13 lines
194 B
Nix
|
{
|
||
|
defaultHardening = {
|
||
|
PrivateTmp = "true";
|
||
|
ProtectSystem = "full";
|
||
|
NoNewPrivileges = "true";
|
||
|
PrivateDevices = "true";
|
||
|
MemoryDenyWriteExecute = "true";
|
||
|
};
|
||
|
}
|
||
|
|
||
|
|
||
|
|