starred/nix-config-ryan4yin
1
0
Fork 0
mirror of https://github.com/ryan4yin/nix-config.git synced 2026-05-30 02:00:38 +02:00
Code Issues Packages Projects Releases 10 Wiki Activity

docs: nixos-hardening - current status

Browse Source
This commit is contained in:
Ryan Yin
2024-09-06 00:03:46 +08:00
parent 6942e54b28
commit 2b47447f0b
1 changed files with 11 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files
hardening/README.md
+11
View File
@@ -10,6 +10,17 @@
1. Accessing the network when they don't need to. 1. Accessing the network when they don't need to.
1. Accessing hardware devices they don't need. 1. Accessing hardware devices they don't need.
## Current Status
1. **System Level**:
- [ ] AppArmor
- [ ] Kernel & System Hardening
1. **Per-App Level**:
- Nixpak (Bubblewrap)
- [x] QQ
- [ ] Firefox (Nvidia GPU support issue)
- [ ] Firejail (risk? not enabled yet)
## Kernel Hardening ## Kernel Hardening
- NixOS Kernel Config: - NixOS Kernel Config: