From 367b0c114f38d5c332f5ee971ad13dd69e302dec Mon Sep 17 00:00:00 2001
From: tilpner
Date: Mon, 15 Jun 2020 09:53:06 +0200
Subject: WIP towards module based configuration

---
 profiles/noTunnels.nix | 23 -----------------------
 1 file changed, 23 deletions(-)
 delete mode 100644 profiles/noTunnels.nix

(limited to 'profiles/noTunnels.nix')

diff --git a/profiles/noTunnels.nix b/profiles/noTunnels.nix
deleted file mode 100644
index 292b034..0000000
--- a/profiles/noTunnels.nix
+++ /dev/null
@@ -1,23 +0,0 @@
-{ }: {
-  meta.description = ''
-    Take reasonable precautions against the use of a proxy, or an encrypted DNS tunnel.
-
-    This can make sense if we do DNS-level filtering, and the user does not have full control
-    over the device they're using.
-
-    If a motivated user has local write and execution privileges, it is unlikely that we can prevent
-    them from circumventing these restrictions.
-  '';
-
-  policies = {
-    DNSOverHTTPS = {
-      Enabled = false;
-      Locked = true;
-    };
-
-    Proxy = {
-      Mode = "none";
-      Locked = true;
-    };
-  };
-}
-- 
cgit v1.2.3