[tor/master] systemd unit file: ensures that the process and all its children can never gain
3 Sep
2014
3 Sep
'14
5:30 p.m.
commit b4170421cc58d8c57254f4224ba259e817f48869 Author: intrigeri <intrigeri@boum.org> Date: Wed Aug 27 03:18:26 2014 +0000 systemd unit file: ensures that the process and all its children can never gain new privileges (#12939). --- contrib/dist/tor.service.in | 1 + 1 file changed, 1 insertion(+) diff --git a/contrib/dist/tor.service.in b/contrib/dist/tor.service.in index 2fe51c7..c4709a7 100644 --- a/contrib/dist/tor.service.in +++ b/contrib/dist/tor.service.in @@ -19,6 +19,7 @@ PrivateTmp = yes DeviceAllow = /dev/null rw DeviceAllow = /dev/urandom r InaccessibleDirectories = /home +NoNewPrivileges = yes [Install] WantedBy = multi-user.target
3931
Age (days ago)
3931
Last active (days ago)
0 comments
1 participants
participants (1)
-
nickm@torproject.org