b8781ffe6c
* Default to 256-byte inodes for all filesystems, not only larger ones * Bigalloc is considered supported now for small cluster sizes * E2fsck and e2image fixes for quota feature * Fix mke2fs creation of filesystem into non-existent file - libss-add-newer-libreadline.so.8-to-dlopen-path.patch: libss: add newer libreadline.so.8 to dlopen path (bsc#1189453) Rev filesystems/143 Md5 69640eb8914151807bf629226ae87303 2021-09-17 16:27:04 jankara 919834
21 lines
696 B
Diff
21 lines
696 B
Diff
Index: e2fsprogs-1.46.4/scrub/e2scrub@.service.in
|
|
===================================================================
|
|
--- e2fsprogs-1.46.4.orig/scrub/e2scrub@.service.in
|
|
+++ e2fsprogs-1.46.4/scrub/e2scrub@.service.in
|
|
@@ -10,6 +10,15 @@ PrivateNetwork=true
|
|
ProtectSystem=true
|
|
ProtectHome=read-only
|
|
PrivateTmp=yes
|
|
+# added automatically, for details please see
|
|
+# https://en.opensuse.org/openSUSE:Security_Features#Systemd_hardening_effort
|
|
+ProtectHostname=true
|
|
+ProtectClock=true
|
|
+ProtectKernelTunables=true
|
|
+ProtectKernelLogs=true
|
|
+ProtectControlGroups=true
|
|
+RestrictRealtime=true
|
|
+# end of automatic additions
|
|
AmbientCapabilities=CAP_SYS_ADMIN CAP_SYS_RAWIO
|
|
NoNewPrivileges=yes
|
|
User=root
|