From daa7f274f54772473e975519111b296c165e9566 Mon Sep 17 00:00:00 2001 From: Luc Perkins Date: Tue, 25 Feb 2025 14:56:05 -0300 Subject: [PATCH] Restore the Nix security doc --- doc/manual/source/installation/nix-security.md | 15 +++++++++++++++ 1 file changed, 15 insertions(+) create mode 100644 doc/manual/source/installation/nix-security.md diff --git a/doc/manual/source/installation/nix-security.md b/doc/manual/source/installation/nix-security.md new file mode 100644 index 000000000..1e9036b68 --- /dev/null +++ b/doc/manual/source/installation/nix-security.md @@ -0,0 +1,15 @@ +# Security + +Nix has two basic security models. First, it can be used in “single-user +mode”, which is similar to what most other package management tools do: +there is a single user (typically root) who performs all package +management operations. All other users can then use the installed +packages, but they cannot perform package management operations +themselves. + +Alternatively, you can configure Nix in “multi-user mode”. In this +model, all users can perform package management operations — for +instance, every user can install software without requiring root +privileges. Nix ensures that this is secure. For instance, it’s not +possible for one user to overwrite a package used by another user with a +Trojan horse.