systemd unit file: ensures that the process and all its children can never gain · b4170421cc - CrySP Git Service

Pārlūkot izejas kodu

systemd unit file: ensures that the process and all its children can never gain
new privileges (#12939).

intrigeri 9 gadi atpakaļ

vecāks

b159ffb675

revīzija

b4170421cc

1 mainītis faili ar 1 papildinājumiem un 0 dzēšanām

Dalītais skats Rādīt salīdzināšanas statistiku

						
							+ 1
							
							- 0
						
contrib/dist/tor.service.in
							 
								Parādīt failu
							
				@@ -19,6 +19,7 @@ PrivateTmp = yes
			
				 DeviceAllow = /dev/null rw
			
				 DeviceAllow = /dev/urandom r
			
				 InaccessibleDirectories = /home
			
				+NoNewPrivileges = yes
			
				 [Install]
			
				 WantedBy = multi-user.target