Proposal: ReadOnlyDirectories /etc and /usr for network-services
Nicolas Mailhot
nicolas.mailhot at laposte.net
Mon Jul 22 16:10:25 UTC 2013
Le Lun 22 juillet 2013 00:02, Reindl Harald a écrit :
> Hi
>
> has anybody considered to put the following as default in systemd-units of
> network services? cross-posting to users-list intented because i think it
> is a good idea to bring it to a broader userbase!
>
> ReadOnlyDirectories=/etc
> ReadOnlyDirectories=/usr
It would be very nice if write-protection of FHS-defined RO directories
was applied by default, except for the software updater or during explicit
maintenance operations.
Regards,
--
Nicolas Mailhot
More information about the devel
mailing list