1 |
On 10/14/2013 01:24 PM, Rich Freeman wrote: |
2 |
> Systemd lets you configure daemons to have restricted access to the |
3 |
> filesystem as well - either read-only, or not at all - by directory. |
4 |
> I assume it just clones the mount namespace, and then sets up |
5 |
> bind-mounts to implement this before dropping root and launching the |
6 |
> process. |
7 |
|
8 |
On 10/14/2013 01:08 PM, William Hubbs wrote: |
9 |
> This functionality can't be fully supported if /etc/mtab is a file. |
10 |
|
11 |
That is all that I needed to read. Make sure that there are no |
12 |
regressions for existing users and I am all for it. :) |