merge firejail #2
2 changed files with 43 additions and 5 deletions
|
|
@ -77,12 +77,55 @@
|
||||||
services.zerotierone.enable = true;
|
services.zerotierone.enable = true;
|
||||||
services.zerotierone.joinNetworks = [ "b3ce837c63" "363c67c55a726a89" ];
|
services.zerotierone.joinNetworks = [ "b3ce837c63" "363c67c55a726a89" ];
|
||||||
|
|
||||||
|
# nix-ld
|
||||||
programs.nix-ld.enable = true;
|
programs.nix-ld.enable = true;
|
||||||
programs.nix-ld.libraries = with pkgs; [
|
programs.nix-ld.libraries = with pkgs; [
|
||||||
libGL
|
libGL
|
||||||
SDL2
|
SDL2
|
||||||
];
|
];
|
||||||
|
|
||||||
|
# Firejail
|
||||||
|
programs.firejail = {
|
||||||
|
enable = true;
|
||||||
|
wrappedBinaries = {
|
||||||
|
firefox = {
|
||||||
|
executable = "${pkgs.firefox}/bin/firefox";
|
||||||
|
profile = "${pkgs.firejail}/etc/firejail/firefox.profile";
|
||||||
|
extraArgs = [
|
||||||
|
"--env=GTK_THEME=Adwaita:dark"
|
||||||
|
];
|
||||||
|
};
|
||||||
|
signal-desktop-bin = {
|
||||||
|
executable = "${pkgs.signal-desktop-bin}/bin/signal-desktop";
|
||||||
|
profile = "${pkgs.firejail}/etc/firejail/signal-desktop.profile";
|
||||||
|
extraArgs = [
|
||||||
|
"--env=GTK_THEME=Adwaita:dark"
|
||||||
|
];
|
||||||
|
};
|
||||||
|
vesktop = {
|
||||||
|
executable = "${pkgs.vesktop}/bin/vesktop";
|
||||||
|
profile = "${pkgs.firejail}/etc/firejail/vesktop.profile";
|
||||||
|
extraArgs = [
|
||||||
|
"--env=GTK_THEME=Adwaita:dark"
|
||||||
|
];
|
||||||
|
};
|
||||||
|
spotify = {
|
||||||
|
executable = "${pkgs.spotify}/bin/spotify";
|
||||||
|
profile = "${pkgs.firejail}/etc/firejail/spotify.profile";
|
||||||
|
extraArgs = [
|
||||||
|
"--env=GTK_THEME=Adwaita:dark"
|
||||||
|
];
|
||||||
|
};
|
||||||
|
obsidian = {
|
||||||
|
executable = "${pkgs.vesktop}/bin/obsidian";
|
||||||
|
profile = "${pkgs.firejail}/etc/firejail/obsidian.profile";
|
||||||
|
extraArgs = [
|
||||||
|
"--env=GTK_THEME=Adwaita:dark"
|
||||||
|
"--net=none" # I don't use community plugins... yet.
|
||||||
|
];
|
||||||
|
};
|
||||||
|
};
|
||||||
|
};
|
||||||
|
|
||||||
# Enable the X11 windowing system.
|
# Enable the X11 windowing system.
|
||||||
# You can disable this if you're only using the Wayland session.
|
# You can disable this if you're only using the Wayland session.
|
||||||
|
|
|
||||||
|
|
@ -6,7 +6,6 @@
|
||||||
home.packages = with pkgs; [
|
home.packages = with pkgs; [
|
||||||
neovim
|
neovim
|
||||||
fastfetch
|
fastfetch
|
||||||
firefox
|
|
||||||
git
|
git
|
||||||
cava
|
cava
|
||||||
kdePackages.qtwebsockets
|
kdePackages.qtwebsockets
|
||||||
|
|
@ -14,13 +13,11 @@
|
||||||
python313Packages.websockets
|
python313Packages.websockets
|
||||||
python313Packages.requests # basic python test env
|
python313Packages.requests # basic python test env
|
||||||
]))
|
]))
|
||||||
signal-desktop-bin
|
|
||||||
simplex-chat-desktop
|
simplex-chat-desktop
|
||||||
qbittorrent
|
qbittorrent
|
||||||
ffmpeg
|
ffmpeg
|
||||||
yt-dlp
|
yt-dlp
|
||||||
prismlauncher
|
prismlauncher
|
||||||
vesktop
|
|
||||||
keepassxc
|
keepassxc
|
||||||
obs-studio
|
obs-studio
|
||||||
mpv
|
mpv
|
||||||
|
|
@ -38,8 +35,6 @@
|
||||||
})
|
})
|
||||||
woeusb-ng
|
woeusb-ng
|
||||||
ntfs3g
|
ntfs3g
|
||||||
obsidian
|
|
||||||
spotify
|
|
||||||
];
|
];
|
||||||
|
|
||||||
home.file = {
|
home.file = {
|
||||||
|
|
|
||||||
Loading…
Add table
Add a link
Reference in a new issue