[systemd-commits] TODO
Lennart Poettering
lennart at kemper.freedesktop.org
Wed Jun 4 09:58:33 PDT 2014
TODO | 4 +---
1 file changed, 1 insertion(+), 3 deletions(-)
New commits:
commit f598ac3e28b729dd0b1d0a881df3e16465687a2b
Author: Lennart Poettering <lennart at poettering.net>
Date: Wed Jun 4 18:58:05 2014 +0200
update TODO
diff --git a/TODO b/TODO
index 5fe1a20..5cb76df 100644
--- a/TODO
+++ b/TODO
@@ -32,8 +32,6 @@ External:
Features:
-* ProtectedHome= turn into enum, and add "full" option that also marks /etc read-only
-
* generator that automatically discovers btrfs subvolumes, identifies their purpose based on some xattr on them.
* support setting empty environment variables with Environment= and EnvironmentFile=
@@ -70,7 +68,7 @@ Features:
* Add timeout to early-boot, and shut down the system if it is hit. Solves the laptop-in-bag problem and is useful for embedded cases
-* Run most system services with cgroupfs read-only and procfs with a more secure mode
+* Run most system services with cgroupfs read-only and procfs with a more secure mode (doesn't work, since the hidepid= option is per-pid-namespace, not per-mount)
* sd-event: generate a failure of a default event loop is executed out-of-thread
More information about the systemd-commits
mailing list