projects / platform / core / system / tlm.git / commitdiff
? search:
summary | shortlog | log | commit | commitdiff | tree
raw | patch | inline | side by side (parent: 2f4e1ad)
Remove samck capability 19/74919/1 accepted/tizen/common/20160617.121538 accepted/tizen/ivi/20160617.083940 accepted/tizen/mobile/20160617.083928 accepted/tizen/tv/20160617.083740 accepted/tizen/wearable/20160617.083955 submit/tizen/20160617.010000
authorYunmi Ha <yunmi.ha@samsung.com>
Thu, 16 Jun 2016 05:36:57 +0000 (14:36 +0900)
committerYunmi Ha <yunmi.ha@samsung.com>
Thu, 16 Jun 2016 05:36:57 +0000 (14:36 +0900)
Need to remove smack capability from root daemon.

Change-Id: I7586b84a8d43fb72f91f12fa9e6345c7fb483273
Signed-off-by: Yunmi Ha <yunmi.ha@samsung.com>
data/tlm.service patch | blob | history

diff --git a/data/tlm.service b/data/tlm.service
index 2a08f59..3cd0ed5 100644 (file)
--- a/data/tlm.service
+++ b/data/tlm.service
@@ -5,6 +5,8 @@ Requires=dbus.socket
 
 [Service]
 ExecStart=/usr/bin/tlm
+CapabilityBoundingSet=~CAP_MAC_ADMIN
+CapabilityBoundingSet=~CAP_MAC_OVERRIDE
 #StandardInput=tty
 #StandardOutput=journal
 #StandardError=journal
Domain: System / System Framework;