pool/quota
SHA256
19
0
Fork 2
Code Issues Pull Requests Activity

Remove PrivateDevices systemd hardening #2

Closed
wfrisch wants to merge 1 commits from wfrisch/quota:slfo-1.2 into slfo-1.2
pull from: wfrisch/quota:slfo-1.2
merge into: pool:slfo-1.2
Conversation 1 Commits 1 Files Changed 2 +6 -1
2 changed files with 6 additions and 1 deletions
Download Patch File Download Diff File Expand all files Collapse all files

6
quota.changes
View File

@@ -1,3 +1,9 @@
-------------------------------------------------------------------
Tue Dec 9 11:10:18 UTC 2025 - Wolfgang Frisch <wolfgang.frisch@suse.com>
- Remove `PrivateDevices` systemd hardening from quotad.service because it
needs access to block devices in /dev (bsc#1254310).
-------------------------------------------------------------------
Fri Dec 9 08:30:21 UTC 2022 - Thorsten Kukuk <kukuk@suse.com>

1
quotad.service
View File

@@ -7,7 +7,6 @@ After=network.target
# https://en.opensuse.org/openSUSE:Security_Features#Systemd_hardening_effort
ProtectSystem=full
ProtectHome=true
PrivateDevices=true
ProtectHostname=true
ProtectClock=true
ProtectKernelTunables=true