projects / platform / upstream / systemd.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 80f524a) | patch
namespace: Make private /dev noexec and readonly (#3263)
authortopimiettinen <topimiettinen@users.noreply.github.com>
Mon, 16 May 2016 02:34:05 +0000 (02:34 +0000)
committerZbigniew Jędrzejewski-Szmek <zbyszek@in.waw.pl>
Mon, 16 May 2016 02:34:05 +0000 (22:34 -0400)
commit737ba3c82c71c15de498f63527d264dc996ffa11
tree6db341e8a8664cd71a665a8d483ac44cf67b44b0tree | snapshot
parent80f524a4c973654c5d82bf15598466b2f96a487dcommit | diff
namespace: Make private /dev noexec and readonly (#3263)

Private /dev will not be managed by udev or others, so we can make it
noexec and readonly after we have made all device nodes. As /dev/shm
needs to be writable, we can't use bind_remount_recursive().
man/systemd.exec.xml diff | blob | history
src/core/namespace.c diff | blob | history
Domain: System / System Framework;