diff options
author | Alex Auvolat <alex@adnab.me> | 2021-12-26 10:15:25 +0100 |
---|---|---|
committer | Alex Auvolat <alex@adnab.me> | 2021-12-26 10:15:25 +0100 |
commit | 05bb108323cd7a28968f38a21817443ce17a429a (patch) | |
tree | e3ea62233e504f8597c33591682dc4ab8d5bfbce | |
parent | 17b2c82339df911f9aced8eea42ff342f6ea8719 (diff) | |
download | nixcfg-05bb108323cd7a28968f38a21817443ce17a429a.tar.gz nixcfg-05bb108323cd7a28968f38a21817443ce17a429a.zip |
Disable privileged containers
-rw-r--r-- | app/core/deploy/core.hcl | 1 | ||||
-rw-r--r-- | configuration.nix | 2 |
2 files changed, 1 insertions, 2 deletions
diff --git a/app/core/deploy/core.hcl b/app/core/deploy/core.hcl index 67a3e64..fd4176a 100644 --- a/app/core/deploy/core.hcl +++ b/app/core/deploy/core.hcl @@ -21,7 +21,6 @@ job "core" { image = "lxpz/amd64_diplonat:2" network_mode = "host" readonly_rootfs = true - privileged = true } restart { diff --git a/configuration.nix b/configuration.nix index 98ae874..726e425 100644 --- a/configuration.nix +++ b/configuration.nix @@ -257,7 +257,7 @@ in config = [ { volumes.enabled = true; - allow_privileged = true; + #allow_privileged = true; } ]; } |