F21 System Wide Change: PrivateDevices=yes and PrivateNetwork=yes For Long-Running Services
Josh Boyer
jwboyer at fedoraproject.org
Wed Mar 26 18:32:53 UTC 2014
On Wed, Mar 26, 2014 at 1:59 PM, Reindl Harald <h.reindl at thelounge.net> wrote:
>
>
> Am 26.03.2014 18:52, schrieb Stephen Gallagher:
>> On 03/26/2014 11:30 AM, Reindl Harald wrote:
>>> i just tried on F20 and "PrivateDevices" is not known sadly because
>>> i have some services in mind where i would like that
>>
>>> Mär 26 15:51:55 testserver.rhsoft.net systemd[1]:
>>> [/usr/lib/systemd/system/httpd.service:15] Unknown lvalue
>>> 'PrivateDevices' in section 'Service'
>>
>> PrivateNetwork seems to have been around since at least 2012. The
>> commit providing PrivateDevices[1] went upstream on January 20th.
>
> correct and in use here for longer time
>
>> According to
>> git describe 7f112f50fea585411ea2d493b3582bea77eb4d6e
>>
>> we get v208-1612-g7f112f5 which means it went in 1,612 patches after
>> v208 was released, so it's definitely not in F20 or RHEL 7 beta
>
> which is just bad, after the announcement i planned to configure
> postfix, dbmail, dovecot, httpd... on my local testmachine using
> PrivateDevices=yes since /dev/urnadom and friends are statet as
> available and test out if it is do-able in production
>
> that said the announcement with words like "recent systemd" as
> well as the documentation is just poor because it does nowhere
> state the required systemd version which reflects the not care
> about downstream or users attitude
The Change is targeted at rawhide/F21. It is not unreasonable to
expect that one translate "recent" to "the systemd in rawhide" (which
is systemd-v212) in this context. So I think "poor" is a bit much,
but I do agree listing the minimum systemd version would be good to
add.
josh
More information about the devel
mailing list