diff options
| author | Lennart Poettering <lennart@poettering.net> | 2023-04-26 21:23:42 +0200 |
|---|---|---|
| committer | Lennart Poettering <lennart@poettering.net> | 2023-04-26 22:21:19 +0200 |
| commit | f351e951d3744f20e59bcf28de09dd94f8a65693 (patch) | |
| tree | c1d40efc2e7303fa260dc8fe5ccb70aec03fa40b /TODO | |
| parent | fec81dedfd33a291c8b8d8aef68fa944426c1b7f (diff) | |
| download | systemd-f351e951d3744f20e59bcf28de09dd94f8a65693.tar.gz | |
update TODO
Diffstat (limited to 'TODO')
| -rw-r--r-- | TODO | 7 |
1 files changed, 7 insertions, 0 deletions
@@ -129,6 +129,13 @@ Deprecations and removals: Features: +* mount most file systems with a restrictive uidmap. e.g. mount /usr/ with a + uidmap that blocks out anything outside 0…1000 (i.e. system users) and similar. + +* mount the root fs with MS_NOSUID by default, and then mount /usr/ without + both so that suid executables can only be placed there. Do this already in + the initrd. If /usr/ is not split out create a bind mount automatically. + * rework journalctl -M to be based on a machined method that generates a mount fd of the relevant journal dirs in the container with uidmapping applied to allow the host to read it, while making everything read-only. |