archtechx/nix
1
0
Fork 0
mirror of https://github.com/archtechx/nix.git synced 2025-12-12 11:24:04 +00:00
Code Activity

Limit read perms on /srv and /home

Browse source
This commit is contained in:
Samuel Štancl 2025-08-13 03:05:25 +02:00
parent 737e13ab4f
commit 1731e68e5f
1 changed files with 2 additions and 2 deletions
Download patch file Download diff file Expand all files Collapse all files

4
laravel.nix
View file

@ -55,8 +55,8 @@ in {
# Ensure directories exist with proper permissions # Ensure directories exist with proper permissions
systemd.tmpfiles.rules = [ systemd.tmpfiles.rules = [
"d /srv 0755 root root - -" "d /srv 0751 root root - -"
"d /home 0755 root root - -" "d /home 0751 root root - -"
"d /srv/${name} 0750 ${mkUsername name} ${mkUsername name} - -" "d /srv/${name} 0750 ${mkUsername name} ${mkUsername name} - -"
"C /home/${mkUsername name}/.bashrc 0640 ${mkUsername name} ${mkUsername name} - /etc/laravel-${name}-bashrc" "C /home/${mkUsername name}/.bashrc 0640 ${mkUsername name} ${mkUsername name} - /etc/laravel-${name}-bashrc"
]; ];