starred/nix-config-ryan4yin
1
0
Fork 0
mirror of https://github.com/ryan4yin/nix-config.git synced 2026-01-11 22:30:25 +01:00
Code Issues Packages Projects Releases 10 Wiki Activity

docs: nixos-hardening - current status

Browse Source
This commit is contained in:
Ryan Yin
2024-09-06 00:03:46 +08:00
parent 6942e54b28
commit 2b47447f0b
1 changed files with 11 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

11
hardening/README.md
View File

@@ -10,6 +10,17 @@
1. Accessing the network when they don't need to.
1. Accessing hardware devices they don't need.
## Current Status
1. **System Level**:
- [ ] AppArmor
- [ ] Kernel & System Hardening
1. **Per-App Level**:
- Nixpak (Bubblewrap)
- [x] QQ
- [ ] Firefox (Nvidia GPU support issue)
- [ ] Firejail (risk? not enabled yet)
## Kernel Hardening
- NixOS Kernel Config: