[systemd-devel] Block systemd from adding new services
Silvio Knizek
killermoehre at gmx.net
Sun Jun 13 15:45:12 UTC 2021
Am Sonntag, dem 13.06.2021 um 10:49 -0400 schrieb Saint Michael:
> This is not a human attacker, but a robot. My question is: if I apply
> chattr +i to $(pkg-config --variable=systemdsystemconfdir systemd),
> will the OS continue to work fine or this is nonsense?
> Philip
Systemd will work totally fine (except »systemctl edit« probably). But
the point stays: if your attacker has root rights, nothing prevents
them for setting »chattr -i« on the confdir. So IMHO your approach is
futile.
BR
Silvio
More information about the systemd-devel
mailing list