[systemd-devel] [ANNOUNCE] systemd v229
Dave Reisner
d at falconindy.com
Thu Feb 11 21:19:34 UTC 2016
On Thu, Feb 11, 2016 at 05:50:08PM +0100, Lennart Poettering wrote:
> Heya!
>
> I just tagged the v229 release of systemd. Enjoy!
>
> CHANGES WITH 229:
>
> <snip>
>
> * When the stacktrace is extracted from processes of system users, this
> is now done as "systemd-coredump" user, in order to sandbox this
> potentially security sensitive parsing operation. (Note that when
> processing coredumps of normal users this is done under the user ID
> of process that crashed, as before.) Packagers should take notice
> that it is now necessary to create the "systemd-coredump" system user
> and group at package installation time.
>
Why is it left to downstream to create this user? What makes it
different from the other 4 users which systemd already creates?
More information about the systemd-devel
mailing list