Mirrors
/
mariadb
mirror of https://github.com/MariaDB/server
3
0
Fork 0
Code Releases Activity
Browse Source

MDEV-10404 - Improved systemd service hardening causes SELinux problems 

Disabled NoNewPrivileges until SELinux policy is fixed.
pull/217/head
Sergey Vojtovich 9 years ago
parent
48fbb2bf07
commit
1e160e5cb3
2 changed files with 4 additions and 2 deletions
Whitespace
Show all changes Ignore whitespace when comparing lines Ignore changes in amount of whitespace Ignore changes in whitespace at EOL
Split View
Diff Options
Show Stats Download Patch File Download Diff File
  1. 3
      support-files/mariadb.service.in
  2. 3
      support-files/mariadb@.service.in

3
support-files/mariadb.service.in
View File

@ -48,7 +48,8 @@ CapabilityBoundingSet=CAP_IPC_LOCK
# Prevent writes to /usr, /boot, and /etc
ProtectSystem=full
NoNewPrivileges=true
# Doesn't yet work properly with SELinux enabled
# NoNewPrivileges=true
PrivateDevices=true

3
support-files/mariadb@.service.in
View File

@ -55,7 +55,8 @@ CapabilityBoundingSet=CAP_IPC_LOCK
# Prevent writes to /usr, /boot, and /etc
ProtectSystem=full
NoNewPrivileges=true
# Doesn't yet work properly with SELinux enabled
# NoNewPrivileges=true
PrivateDevices=true

Write Preview
Loading…
Cancel
Save