b12f/nixpkgs
1
0
Fork 0
Code Issues Pull requests Packages Projects Releases Wiki Activity
nixpkgs/nixos/modules/config
History
Bjørn Forsman fa8ace3618 nixos: don't implicitly map missing user groups to nogroup 
Before: `users.users.user1.group = "group-not-defined-anywhere-else"`
would result in user1 having the primary group `nogroup`, assigned at
activation time and only with a (easy to miss) warning from the
activation script. This behaviour is a security issue becase no files
should be owned by `nogroup` and it allows for unrelated users (and
services) to accidentally have access to files they shouldn't have.

After: The configuration above results in this eval error:
  - The following users have a primary group that is undefined: user1
  Hint: Add this to your NixOS config:
    users.groups.group-not-defined-anywhere-else = {};
2023-10-06 19:33:01 +02:00
..
fonts noto-fonts-emoji → noto-fonts-color-emoji 2023-09-12 12:38:07 +00:00
gtk nixos/modules/config/gtk/gtk-icon-cache: do not generate icon caches for files in $out/share/icons 2022-11-03 18:45:29 +03:00
krb5 krb5Full: turn into alias 2022-12-08 23:08:44 +01:00
xdg nixos: fix typos 2023-05-19 22:31:04 -04:00
appstream.nix nixos/config: invariant option docs MD conversions 2022-07-24 13:01:18 +02:00
console.nix nixos/console: use systemd-vconsole-setup.service from upstream for sd initrd 2023-09-13 12:02:40 +02:00
debug-info.nix
gnu.nix nixos/*: remove boot.grub.version 2023-05-10 21:51:26 +02:00
i18n.nix nixos/i18n: correct defaultText for supportedLocales 2023-07-08 16:43:22 +02:00
iproute2.nix nixos/*: automatically convert option descriptions 2022-08-31 16:32:53 +02:00
ldap.nix nixos/*: automatically convert option descriptions 2022-08-31 16:32:53 +02:00
locale.nix nixos/config: invariant option docs MD conversions 2022-07-24 13:01:18 +02:00
malloc.nix Revert "nixos/malloc: add back maybe unnecessary line" 2023-08-10 03:02:39 +02:00
mysql.nix nixos: fix backticks in Markdown descriptions 2023-01-21 18:08:38 +01:00
networking.nix nixos/*: convert internal option descriptions to MD 2022-08-31 16:32:54 +02:00
nix-channel.nix nixos/nix-channel: only try to remove the nix-channel binary if it exists 2023-07-24 10:34:48 +02:00
nix-flakes.nix nixos: flakes.nix -> nix-flakes.nix 2023-07-06 23:27:17 +02:00
nix-remote-build.nix nixos/nix*: remove not necessary imports 2023-07-07 11:01:12 +02:00
nix.nix nixos: flakes.nix -> nix-flakes.nix 2023-07-06 23:27:17 +02:00
no-x-libs.nix nixos/no-x-libs: use pythonPackagesExtensions to construct python overlay 2023-08-01 15:36:15 +02:00
nsswitch.nix nixos/config: invariant option docs MD conversions 2022-07-24 13:01:18 +02:00
power-management.nix nixos/power-management: fix deadlock with post-resume.{target,service} 2022-11-03 12:00:00 +00:00
pulseaudio.nix Merge pull request #180976 from Yarny0/pulseaudio-wrapper 2022-09-17 14:45:26 +02:00
qt.nix nixos/qt: install qt6gtk2 when using gtk2 2023-07-27 15:39:30 -03:00
resolvconf.nix nixos/modules/config/resolvconf.nix: skip systemPackages if disabled 2023-03-29 09:31:09 +11:00
shells-environment.nix nixos/environment: fix variables type 2022-12-27 21:09:10 -05:00
stevenblack.nix nixos/*: remove trailing period in mkEnableOptions 2023-02-08 15:23:34 +01:00
swap.nix nixos/swap: make sure all kernel modules are loaded before creating swap devices. (#239163) 2023-07-13 17:12:54 +02:00
sysctl.nix nixos/sysctl: raise default vm.max_map_count to 1048576 2023-06-21 19:25:42 +02:00
system-environment.nix nixos/environment: accept path for variables and sessionVariables 2022-11-15 21:23:54 -05:00
system-path.nix nixos/nano: add enable, package option, do not create /etc/nanorc by default 2023-09-29 00:24:34 +02:00
terminfo.nix nixos/{sudo, terminfo}: Adjust defaults for compatibility with sudo-rs 2023-09-18 17:36:15 +00:00
unix-odbc-drivers.nix nixos/config: invariant option docs MD conversions 2022-07-24 13:01:18 +02:00
update-users-groups.pl nixos/user-groups: fixup of 5666a378 2023-09-13 11:44:19 +02:00
users-groups.nix nixos: don't implicitly map missing user groups to nogroup 2023-10-06 19:33:01 +02:00
vte.nix treewide: automatically md-convert option descriptions 2022-07-30 15:16:34 +02:00
zram.nix nixos/zram: use nixos/zram-generator as backing implementation 2023-08-13 15:38:40 +08:00