rpms / systemd

Clone
Source Code
GIT

Blame SOURCES/0227-man-ProtectHome-protects-root-as-well.patch

c4 c5 c5-plus c6 c6-plus c7 c7-alt c7-atomic c7-atomic-beta c7-beta c7-sig-altarch-fasttrack c8 c8-beta c8s c8s-sig-hyperscale c8s-sig-hyperscale-hotfix-252 c9 c9-beta c9s-sig-hyperscale c9s-sig-hyperscale-hotfix-252
  1.   de89670e4343e3b712c47cbc4005ab3bdd79f283
  2.   SOURCES
  3.   0227-man-ProtectHome-protects-root-as-well.patch
Blob History Raw
803fb7 
From 421fa6e97928bca5a55414ad38bd9659d0e99a15 Mon Sep 17 00:00:00 2001
803fb7 
From: Christian Hesse <mail@eworm.de>
803fb7 
Date: Tue, 30 Jun 2015 19:12:20 +0200
803fb7 
Subject: [PATCH] man: ProtectHome= protects /root as well
803fb7
803fb7 
(cherry picked from commit 5833143708733a3fc9e6935922bf11d7d27cb768)
803fb7
803fb7 
Cherry-picked from: 5833143
803fb7 
Resolves: #1222517
803fb7 
---
803fb7 
 man/systemd.exec.xml | 5 +++--
803fb7 
 1 file changed, 3 insertions(+), 2 deletions(-)
803fb7
803fb7 
diff --git a/man/systemd.exec.xml b/man/systemd.exec.xml
803fb7 
index 56b53e601..5b93aa71e 100644
803fb7 
--- a/man/systemd.exec.xml
803fb7 
+++ b/man/systemd.exec.xml
803fb7 
@@ -858,9 +858,10 @@
803fb7
803fb7 
         <listitem><para>Takes a boolean argument or
803fb7 
         <literal>read-only</literal>. If true, the directories
803fb7 
-        <filename>/home</filename> and <filename>/run/user</filename>
803fb7 
+        <filename>/home</filename>, <filename>/root</filename> and
803fb7 
+        <filename>/run/user</filename>
803fb7 
         are made inaccessible and empty for processes invoked by this
803fb7 
-        unit. If set to <literal>read-only</literal>, the two
803fb7 
+        unit. If set to <literal>read-only</literal>, the three
803fb7 
         directories are made read-only instead. It is recommended to
803fb7 
         enable this setting for all long-running services (in
803fb7 
         particular network-facing ones), to ensure they cannot get

Powered by Pagure 5.13.3

SSH Hostkey/Fingerprint | Documentation