smart-energy-monitor/software/gateway/security.nix

{
  pkgs,
  lib,
  ...
}: {
  security.protectKernelImage = lib.mkDefault true;
  security.forcePageTableIsolation = lib.mkDefault true;

  security.polkit.enable = lib.mkDefault true;
  security.apparmor.enable = lib.mkDefault true;

  security.sudo.enable = lib.mkDefault true;
  security.sudo.wheelNeedsPassword = lib.mkDefault false;
}
added a nixos configuration to build and deploy the gateway 2023-02-20 23:03:41 +01:00			`{`
			`pkgs,`
			`lib,`
			`...`
			`}: {`
			`security.protectKernelImage = lib.mkDefault true;`
			`security.forcePageTableIsolation = lib.mkDefault true;`

			`security.polkit.enable = lib.mkDefault true;`
			`security.apparmor.enable = lib.mkDefault true;`

			`security.sudo.enable = lib.mkDefault true;`
			`security.sudo.wheelNeedsPassword = lib.mkDefault false;`
			`}`