From 38d653dbd39cd1e3370e49c5cc7b031a93532e10 Mon Sep 17 00:00:00 2001 From: Jason Pleau Date: Sun, 31 May 2015 12:51:17 -0400 Subject: [PATCH] core/namespace: Protect /usr instead of /home with ProtectSystem=yes A small typo in ee818b8 caused /home to be put in read-only instead of /usr when ProtectSystem was enabled (ie: not set to "no"). (cherry picked from commit d38e01dc96c5cae1986561c4f3bc7f760560bf2a) Resolves: #1493047 --- src/core/namespace.c | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/src/core/namespace.c b/src/core/namespace.c index 5747462736..217dd36cbd 100644 --- a/src/core/namespace.c +++ b/src/core/namespace.c @@ -521,7 +521,7 @@ int setup_namespace( if (protect_system != PROTECT_SYSTEM_NO) { const char *usr_dir, *boot_dir, *etc_dir; - usr_dir = prefix_roota(root_directory, "/home"); + usr_dir = prefix_roota(root_directory, "/usr"); boot_dir = prefix_roota(root_directory, "/boot"); boot_dir = strjoina("-", boot_dir); etc_dir = prefix_roota(root_directory, "/etc");