[systemd-devel] [PATCH] tmpfiles: do not make /run/nologin executable
Lennart Poettering
lennart at poettering.net
Fri Jan 18 17:12:31 PST 2013
On Fri, 18.01.13 15:54, Dave Reisner (d at falconindy.com) wrote:
> On Fri, Jan 18, 2013 at 09:33:59PM +0100, Michał Bartoszkiewicz wrote:
> > ---
> > tmpfiles.d/systemd.conf | 2 +-
> > 1 file changed, 1 insertion(+), 1 deletion(-)
> >
> > diff --git a/tmpfiles.d/systemd.conf b/tmpfiles.d/systemd.conf
> > index f3928d6..ee86f2e 100644
> > --- a/tmpfiles.d/systemd.conf
> > +++ b/tmpfiles.d/systemd.conf
> > @@ -21,4 +21,4 @@ d /run/systemd/sessions 0755 root root -
> > d /run/systemd/users 0755 root root -
> > d /run/systemd/shutdown 0755 root root -
> >
> > -F /run/nologin 0755 - - - "System is booting up."
> > +F /run/nologin 0644 - - - "System is booting up."
>
> It'd be even better if this particular entry were to go away entirely
> and be replaced by some other mechanism. It's not cool that the default
> behavior of running 'systemd-tmpfiles --create' will lock you out of
> your machine.
That file only locks non-root users out. root can still log in which
sounds pretty Ok that only root can execute "systemd-tmpfiles --create"
successfully, too.
Lennart
--
Lennart Poettering - Red Hat, Inc.
More information about the systemd-devel
mailing list