360ied 11cf6ab0dd nixos/murmur: systemd service hardening ...

Murmur provides an official systemd service file in their repo,
which contains various service hardening settings:

c4b5858d14/auxiliary_files/config_files/mumble-server.service.in (L7)

The service configuration in nixpkgs does not include these hardening settings.

This commit adds the hardening settings to the murmur service in nixpkgs.
This drops the `systemd-analyze security` score of murmur.service from 9.2 (UNSAFE) to 2.1 (OK).

2024-02-04 21:23:34 -05:00

13 KiB

Raw Blame History

View Raw