christoph/flake-nixinator
1
Fork 0
Code Activity

System/Nixinator: Mount /boot with umask=077

Browse Source
This commit is contained in:
Christoph Urlacher
2025-07-15 23:06:52 +02:00
parent 62421754ef
commit d45cf6ce7d
1 changed files with 3 additions and 1 deletions
Download Patch File Download Diff File Expand all files Collapse all files

4
system/nixinator/disks.nix
View File

@ -8,6 +8,8 @@
type = "gpt"; type = "gpt";
partitions = { partitions = {
ESP = { ESP = {
# NOTE: The disk identification uses /dev/disk/by-partlabel,
# so make sure this matches the actual partlabel!!!
label = "EFI"; label = "EFI";
size = "512M"; size = "512M";
type = "EF00"; type = "EF00";
@ -15,7 +17,7 @@
type = "filesystem"; type = "filesystem";
format = "vfat"; format = "vfat";
mountpoint = "/boot"; mountpoint = "/boot";
mountOptions = ["defaults"]; mountOptions = ["umask=077"];
}; };
}; };
luks = { luks = {