16 lines
477 B
Nix
16 lines
477 B
Nix
{ config, lib, ... }:
|
|
with lib;
|
|
with lib.hlissner;
|
|
{
|
|
# Security settings based on https://github.com/hlissner/dotfiles/blob/master/modules/security.nix
|
|
security.acme.acceptTerms = true;
|
|
|
|
boot = {
|
|
# Make tmp volatile, using tmpfs is speedy on SSD systems
|
|
tmpOnTmpfs = mkDefault true;
|
|
cleanTmpDir = mkDefault (!config.boot.tmpOnTmpfs);
|
|
};
|
|
|
|
# Allow non-root users to allow other users to access mount point
|
|
programs.fuse.userAllowOther = mkDefault true;
|
|
}
|