Maximilian Bosch e33cbdc2de

nixos/nextcloud: put secrets into the environment of nextcloud-setup.service ...

The `$(</path/to/file)`-expansion appears verbatim in the cmdline of
`nextcloud-occ` which means that an unprivileged user could find
sensitive values (i.e. admin password & database password) by monitoring
`/proc/<pid>/cmdline`.

Now, these values don't appear in a command line anymore, but will be
passed as environment variables to `nextcloud-occ`.

(cherry picked from commit 9f37d6aee028679b8a94be59d74984e708acaa85)

2021-10-09 20:05:38 +02:00

..

config

Merge pull request #101071 from ju1m/apparmor

2021-04-24 11:24:26 +00:00

hardware

config.hardware.onlykey: update the udev rules for onlykey

2021-08-19 03:25:13 +00:00

i18n/input-method

input methods: add kime

2021-04-19 03:05:07 +09:00

installer

Merge pull request #131876 from NixOS/backport-131760-to-release-21.05

2021-08-01 23:06:37 +02:00

misc

nixos-icons: fix icons not installed when documentation disabled

2021-08-04 19:39:21 +00:00

profiles

Merge pull request #85073 from hyperfekt/systemd-pstore

2021-05-17 00:00:52 +02:00

programs

captive-browser: fix empty string in interface args

2021-08-22 17:44:31 +00:00

security

Merge pull request #129436 from NixOS/backport-121750-to-release-21.05

2021-08-09 16:15:37 +02:00

services

nixos/nextcloud: put secrets into the environment of nextcloud-setup.service

2021-10-09 20:05:38 +02:00

system

nixos/binfmt: run binfmt activation script after mounting /run

2021-08-03 11:24:05 +00:00

tasks

services.zfs.expandOnBoot: support expanding pools on boot

2021-09-13 17:42:07 +00:00

testing

treewide: use perl.withPackages when possible

2021-03-31 21:35:37 +02:00

virtualisation

NixOS/amazonImageZfs: init

2021-09-13 16:20:46 +00:00

module-list.nix

config.hardware.onlykey: move the module into its own folder

2021-08-19 03:25:13 +00:00

rename.nix

quagga: remove

2021-04-22 12:48:48 +02:00