wip: bugfixed and performance improvements

2025-09-15 21:58:04 +02:00 · 2025-09-15 21:58:04 +02:00 · 2c44ee4e68
commit 2c44ee4e68
parent 469c3f0441
4 changed files with 113 additions and 13 deletions
--- a/fedora-42-gnome.yaml
+++ b/fedora-42-gnome.yaml
@ -8,8 +8,9 @@
      vars:
        umask_changes: true
        manage_network: true
-        allow_ptrace: false # turn off for gvisor
-
+        allow_ptrace: false 
+        use_hardened_malloc: true
+  
    - name: 'Gnome package stuff'
      ansible.builtin.include_role:
        name: gnome
@ -21,6 +22,8 @@
    - name: 'Setup arkenfox'
      ansible.builtin.include_role:
        name: arkenfox
+        vars:
+          enable_webgl: false

    - name: 'Install wireguard-tools and neovim'
      ansible.builtin.dnf5:
@ -29,14 +32,6 @@
          - neovim
        state: 'present'
  
-    - name: 'Install devtools'
-      ansible.builtin.include_role:
-        name: devtools
-
    - name: 'Handle SUID binaries'
-      ansible.builtin.include_role:
-        name: suid_role
-      vars:
-        allow_run0: true
-
-
+      ansible.builtin.script:
+        name: ./remove_suid.sh