diff options
| author | Natasha Moongrave <natasha@256phi.eu> | 2026-05-11 15:46:06 +0200 |
|---|---|---|
| committer | Natasha Moongrave <natasha@256phi.eu> | 2026-05-11 15:46:06 +0200 |
| commit | 879e0fa97c11536be02247a0384cbe74ef859b5d (patch) | |
| tree | 3124f6184b56f15994e4e554b5165c5ed4ab656d | |
| parent | 7ba54e3a590971b0085d654e7b6d22be8f28f155 (diff) | |
Moved it to system firefox config (and removed useless import)
| -rw-r--r-- | system/programs.nix | 17 |
1 files changed, 16 insertions, 1 deletions
diff --git a/system/programs.nix b/system/programs.nix index 483b49a..9db68d9 100644 --- a/system/programs.nix +++ b/system/programs.nix @@ -1,4 +1,19 @@ -{pkgs, ...}: { +{...}: { + # Fix firefox not being properly sandboxed and security + environment.etc."apparmor.d/firefox-local".text = '' + # This profile allows everything and only exists to give the + # application a name instead of having the label "unconfined" + abi <abi/4.0>, + include <tunables/global> + profile firefox-local + /home/mun/bin/firefox/{firefox,firefox-bin,updater} + flags=(unconfined) { + userns, + # Site-specific additions and overrides. See local/README for details. + include if exists <local/firefox> + } + ''; + programs.firefox = { enable = true; languagePacks = ["en-GB" "cs" "sk" "de"]; |