Proposing Fedora Feature for private /tmp and /var/tmp for all systemd services in Fedora 17.

[Chris Adams]

Once upon a time, Daniel J Walsh <dwalsh at redhat.com> said:
> I think this is a question for lennart, I am not sure how he sets them
> up.  If I was setting them up, I would probably set them up by default
> under /run/SERVICE/tmp and bind mount over /tmp or something like
> that.  And I would figure the root user could see them.  If he is only
> mounting as tmpfs then I don't think the admin could easily get into
> the namespaces to see them.

I would be against something that hides stuff from root.  That's a
recipie for disaster.
-- 
Chris Adams <cmadams at hiwaay.net>
Systems and Network Administrator - HiWAAY Internet Services
I don't speak for anybody but myself - that's enough trouble.