thermald: disable network access
Use systemd PrivateNetwork feature to prevent thermald daemon to have network capabilities.
This commit is contained in:
parent
741f4a7769
commit
f3516813d8
1 changed files with 3 additions and 1 deletions
|
@ -4,7 +4,8 @@ with lib;
|
|||
|
||||
let
|
||||
cfg = config.services.thermald;
|
||||
in {
|
||||
in
|
||||
{
|
||||
###### interface
|
||||
options = {
|
||||
services.thermald = {
|
||||
|
@ -41,6 +42,7 @@ in {
|
|||
description = "Thermal Daemon Service";
|
||||
wantedBy = [ "multi-user.target" ];
|
||||
serviceConfig = {
|
||||
PrivateNetwork = true;
|
||||
ExecStart = ''
|
||||
${cfg.package}/sbin/thermald \
|
||||
--no-daemon \
|
||||
|
|
Loading…
Reference in a new issue