[systemd-devel] how to debug failures when trying to lock down services

[Lennart Poettering]

On Do, 30.11.17 10:35, Mantas Mikulėnas (grawity at gmail.com) wrote:

> Then I'm guessing ProtectSystem=strict overrides ReadWritePaths and makes
> /var/log read-only... 

Hmm, it does? It really shouldn't.

I thought the issues were mostly around InaccessiblePaths= not
permitting exclusions, not about ProtectSystem/ReadOnlyPaths...

Have a link?

Lennart

-- 
Lennart Poettering, Red Hat