fix: remove proc protection from nysh

2024-11-01 17:33:13 +01:00 · 2024-11-01 17:33:13 +01:00 · c75cc0752a
commit c75cc0752a
parent 8a12640d36
4 changed files with 1 additions and 4 deletions
--- a/home/graphical/default.nix
+++ b/home/graphical/default.nix
@ -3,7 +3,6 @@
    ./firefox
    ./thunderbird
    ./vscode
-    ./lollypop
    ./fuzzel.nix
    ./gammastep.nix # default because I need to protect my peepers
    ./swww.nix
--- a/home/graphical/fuzzel.nix
+++ b/home/graphical/fuzzel.nix
@ -26,5 +26,4 @@
      };
    };
  };
-
 }
--- a/options/media.nix
+++ b/options/media.nix
@ -85,10 +85,10 @@ in
          "video/*" = cfg.ebook.default;
          "image/*" = cfg.image.default;
          "audio/*" = cfg.audio.default;
+          "audio/mpeg" = cfg.audio.default;
          # Ebooks sadly don't have a singular major type.
          "application/epub+zip" = cfg.ebook.default;
        };
      };
    };
-
 }
--- a/options/services/nysh.nix
+++ b/options/services/nysh.nix
@ -36,7 +36,6 @@ in
        PrivateMounts = true;
        ProtectHostname = true;
        ProtectKernelTunables = true;
-        ProtectProc = true;
        PrivateTmp = true;
        IPAddressDeny = "any";
      };