Accueil Explorer Aide
Connexion
sengler
/
tor-parallel-relay-conn
1
0
Fork 0
Fichiers Tickets 0 Pull Requests 0 Wiki
Parcourir la source

Merge remote-tracking branch 'intrigeri/bug12939-systemd-no-new-privileges'

Conflicts:
	contrib/dist/tor.service.in
Nick Mathewson il y a 10 ans
Parent
f58cdb3be7 a8dd279fa5
commit
54348201f7
2 fichiers modifiés avec 5 ajouts et 0 suppressions
Vue séparée Afficher les stats Diff
  1. 4 0
      changes/bug12939-systemd-no-new-privileges
  2. 1 0
      contrib/dist/tor.service.in

+ 4 - 0
changes/bug12939-systemd-no-new-privileges
Voir le fichier 

@@ -0,0 +1,4 @@
 
+  o Distribution:
 
+    - systemd unit file: ensures that the process and all its children
 
+      can never gain new privileges.
 
+      Patch by intrigeri; resolves ticket 12939.

+ 1 - 0
contrib/dist/tor.service.in
Voir le fichier 

@@ -22,6 +22,7 @@ InaccessibleDirectories = /home
 
 ReadOnlyDirectories = /
 
 ReadWriteDirectories = @LOCALSTATEDIR@/lib/tor
 
 ReadWriteDirectories = @LOCALSTATEDIR@/log/tor
 
+NoNewPrivileges = yes
 
 
 [Install]
 
 WantedBy = multi-user.target