From 977e7c795ab2ca3d2a226bdbebf4d5e7b3dad96c Mon Sep 17 00:00:00 2001
From: tzlil <tzlils@protonmail.com>
Date: Fri, 31 Mar 2023 17:56:36 +0300
Subject: completed hydrus setup, made ssh-agent autostart (wantedBy
 default.target)

---
 profiles/security.nix | 2 ++
 1 file changed, 2 insertions(+)

(limited to 'profiles/security.nix')

diff --git a/profiles/security.nix b/profiles/security.nix
index 8ca89e3..ddd980e 100644
--- a/profiles/security.nix
+++ b/profiles/security.nix
@@ -21,6 +21,8 @@
     security.allowSimultaneousMultithreading = false;
     security.forcePageTableIsolation = true;
 
+    security.unprivilegedUsernsClone = config.virtualisation.containers.enable;
+
     security.virtualisation.flushL1DataCache = "always";
 
     security.apparmor.enable = true;
-- 
cgit 1.4.1