public/nixpkgs
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

nix.requireSignedBinaryCaches: description fix

Browse Source
This commit is contained in:
Al Zohali 2016-03-07 22:48:14 +03:00
parent 0ee75214f3
commit a227bd4e3b
1 changed files with 5 additions and 7 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

12
nixos/modules/services/misc/nix-daemon.nix
View File

@ -257,13 +257,11 @@ in
type = types.bool; type = types.bool;
default = true; default = true;
description = '' description = ''
If enabled, Nix will only download binaries from binary If enabled (the default), Nix will only download binaries from binary caches if
caches if they are cryptographically signed with any of the they are cryptographically signed with any of the keys listed in
keys listed in <option>nix.binaryCachePublicKeys</option>. If disabled, signatures are neither
<option>nix.binaryCachePublicKeys</option>. If disabled (the required nor checked, so it's strongly recommended that you use only
default), signatures are neither required nor checked, so trustworthy caches and https to prevent man-in-the-middle attacks.
it's strongly recommended that you use only trustworthy
caches and https to prevent man-in-the-middle attacks.
''; '';
}; };