isabelroses.com
my over complex system configurations
dotfiles.isabelroses.com/
nixos
nix
flake
dotfiles
linux
nixos/networking/tcpcrypt: disable for breaking ipv4
+2
-1
+2
-1
modules/nixos/networking/tcpcrypt.nix
+2
-1
modules/nixos/networking/tcpcrypt.nix
···
1
+
# FIXME: i have disabeled this since it broke my ipv4 connections
1
2
{
2
3
lib,
3
4
config,
···
10
11
# enable opportunistic TCP encryption
11
12
# this is NOT a pancea, however, if the receiver supports encryption and the attacker is passive
12
13
# privacy will be more plausible (but not guaranteed, unlike what the option docs suggest)
13
-
networking.tcpcrypt.enable = !config.garden.profiles.server.enable;
14
+
# networking.tcpcrypt.enable = !config.garden.profiles.server.enable;
14
15
15
16
users = mkIf config.networking.tcpcrypt.enable {
16
17
groups.tcpcryptd = { };