rspam needs SYS_ADMIN to use DynamicUser
This commit is contained in:
parent
1730fc8bd5
commit
39482d7ee1
|
|
@ -2,6 +2,8 @@
|
||||||
|
|
||||||
with lib;
|
with lib;
|
||||||
let
|
let
|
||||||
|
cfg = config.fudo.mail.dovecot;
|
||||||
|
|
||||||
sievePath = let
|
sievePath = let
|
||||||
isRegularFile = _: type: type == "regular";
|
isRegularFile = _: type: type == "regular";
|
||||||
sieves = filter isRegularFile (builtins.readDir ./sieves);
|
sieves = filter isRegularFile (builtins.readDir ./sieves);
|
||||||
|
|
|
||||||
|
|
@ -342,6 +342,7 @@ in {
|
||||||
];
|
];
|
||||||
user = mkUserMap "mailserver-antivirus";
|
user = mkUserMap "mailserver-antivirus";
|
||||||
volumes = [ "${cfg.state-directory}/antivirus:/state" ];
|
volumes = [ "${cfg.state-directory}/antivirus:/state" ];
|
||||||
|
capabilities.SYS_ADMIN = true;
|
||||||
};
|
};
|
||||||
nixos = {
|
nixos = {
|
||||||
useSystemd = true;
|
useSystemd = true;
|
||||||
|
|
|
||||||
10
rspamd.nix
10
rspamd.nix
|
|
@ -63,11 +63,11 @@ in {
|
||||||
}
|
}
|
||||||
'';
|
'';
|
||||||
|
|
||||||
"rbl.conf".text = ''
|
# "rbl.conf".text = ''
|
||||||
rbls {
|
# rbls {
|
||||||
an_rbl
|
# an_rbl
|
||||||
}
|
# }
|
||||||
'';
|
# '';
|
||||||
};
|
};
|
||||||
|
|
||||||
overrides."milter_headers.conf".text = "extended_spam_headers = true;";
|
overrides."milter_headers.conf".text = "extended_spam_headers = true;";
|
||||||
|
|
|
||||||
Loading…
Reference in New Issue