From 20fefd7813c33b54fda35cf13fde9b3674834298 Mon Sep 17 00:00:00 2001
From: Atridad Lahiji <me@atri.dad>
Date: Fri, 19 Dec 2025 18:10:06 -0700
Subject: [PATCH] 1766193006

---
 modules/security.nix | 5 +----
 modules/services.nix | 8 +-------
 2 files changed, 2 insertions(+), 11 deletions(-)

diff --git a/modules/security.nix b/modules/security.nix
index 9d10c3b..ba2a6ef 100644
--- a/modules/security.nix
+++ b/modules/security.nix
@@ -2,14 +2,11 @@
 
 {
   security.sudo.execWheelOnly = true;
-  
+
   nix.settings.allowed-users = [ "@wheel" ];
 
   security.apparmor.enable = true;
 
-  security.audit.enable = true;
-  security.auditd.enable = true;
-
   services.fail2ban.enable = true;
 
   boot.kernel.sysctl = {
diff --git a/modules/services.nix b/modules/services.nix
index b4fff7f..2c7b01c 100644
--- a/modules/services.nix
+++ b/modules/services.nix
@@ -28,13 +28,7 @@
       enable = true;
       autoStart = true;
       openFirewall = true;
-  };
-
-  security.wrappers.sunshine = {
-    owner = "root";
-    group = "root";
-    capabilities = "cap_sys_admin+p";
-    source = "${pkgs.sunshine}/bin/sunshine";
+      capSysAdmin = true;
   };
 
   services.avahi.publish.enable = true;