projects / platform / upstream / systemd.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 624b5a6) | patch
core: add a system-wide SystemCallArchitectures= setting
authorLennart Poettering <lennart@poettering.net>
Thu, 13 Feb 2014 00:35:27 +0000 (01:35 +0100)
committerLennart Poettering <lennart@poettering.net>
Thu, 13 Feb 2014 00:40:50 +0000 (01:40 +0100)
commitd3b1c5083359faa6cfca81810cf87ef70d0290f6
treecfff30a9ffb6cfc83b8a23c39685ef19ba8b3a67tree | snapshot
parent624b5a636f2e0003a67025274d7afe9ebc55423bcommit | diff
core: add a system-wide SystemCallArchitectures= setting

This is useful to prohibit execution of non-native processes on systems,
for example 32bit binaries on 64bit systems, this lowering the attack
service on incorrect syscall and ioctl 32→64bit mappings.
man/systemd-system.conf.xml diff | blob | history
src/core/load-fragment-gperf.gperf.m4 diff | blob | history
src/core/load-fragment.c diff | blob | history
src/core/main.c diff | blob | history
src/core/system.conf diff | blob | history
src/core/user.conf diff | blob | history
Domain: System / System Framework;