| 1 |
On 10/14/2013 01:24 PM, Rich Freeman wrote: |
| 2 |
> Systemd lets you configure daemons to have restricted access to the |
| 3 |
> filesystem as well - either read-only, or not at all - by directory. |
| 4 |
> I assume it just clones the mount namespace, and then sets up |
| 5 |
> bind-mounts to implement this before dropping root and launching the |
| 6 |
> process. |
| 7 |
|
| 8 |
On 10/14/2013 01:08 PM, William Hubbs wrote: |
| 9 |
> This functionality can't be fully supported if /etc/mtab is a file. |
| 10 |
|
| 11 |
That is all that I needed to read. Make sure that there are no |
| 12 |
regressions for existing users and I am all for it. :) |
Archives