Christian Hesse 76096c605f systemd: Add more security feature for systemd units ... ProtectSystem=true mounts the /usr and /boot directories read-only. ProtectHome=true makes the directories /home, /root and /run/user inaccessible and empty for the process. See systemd.exec(5) [0] for details. v2: Replace ProtectSystem=strict with ProtectSystem=true. Some configurations may want to write to /etc or the like. [0] https://www.freedesktop.org/software/systemd/man/systemd.exec.html Signed-off-by: Christian Hesse <mail@eworm.de> Acked-by: David Sommerseth <davids@openvpn.net> Message-Id: <20161227221832.610-1-list@eworm.de> URL: https://www.mail-archive.com/openvpn-devel@lists.sourceforge.net/msg13743.html Signed-off-by: David Sommerseth <davids@openvpn.net>		2017-01-25 19:40:39 +01:00
..
rpm	Update copyrights	2016-12-21 21:57:58 +01:00
systemd	systemd: Add more security feature for systemd units	2017-01-25 19:40:39 +01:00
Makefile.am	systemd: Use automake tools to install unit files	2017-01-25 19:39:42 +01:00