From 1743539d939af8ba2eff07ab5436c39de8204502 Mon Sep 17 00:00:00 2001
From: Sarah <cid+git@cid-chan.moe>
Date: Sun, 17 Oct 2021 14:13:04 +0200
Subject: [PATCH] Even less security

---
 module.nix | 28 ++++++++++++++--------------
 1 file changed, 14 insertions(+), 14 deletions(-)

diff --git a/module.nix b/module.nix
index 1b0710c..2ae46ed 100644
--- a/module.nix
+++ b/module.nix
@@ -61,7 +61,7 @@ in
         User = cfg.user;
         Group = cfg.group;
 
-        PrivateMounts = true;
+        # PrivateMounts = true;
         # PrivateDevices = true;
         # PrivateTmp = true;
         # PrivateIPC = true;
@@ -90,20 +90,20 @@ in
         # ProtectControlGroups = true;
         # RestrictNamespaces = "";
 
-        NoNewPrivileges = true;
-        ReadOnlyPaths = lib.mkMerge [
-          ([
-            "/nix/var"
-            "/nix/store"
-          ])
+        # NoNewPrivileges = true;
+        # ReadOnlyPaths = lib.mkMerge [
+        #   ([
+        #     "/nix/var"
+        #     "/nix/store"
+        #   ])
 
-          (lib.mkIf (cfg.privateKeyFile != null) [
-            (toString cfg.privateKeyFile)
-          ])
-        ];
-        ExecPaths = [
-          "/nix/store"
-        ];
+        #   (lib.mkIf (cfg.privateKeyFile != null) [
+        #     (toString cfg.privateKeyFile)
+        #   ])
+        # ];
+        # ExecPaths = [
+        #   "/nix/store"
+        # ];
         Environment = lib.mkIf (cfg.privateKeyFile != null) [
           "NIX_SECRET_KEY_FILE=${toString cfg.privateKeyFile}"
         ];