diff options
Diffstat (limited to 'man/systemd.exec.xml')
| -rw-r--r-- | man/systemd.exec.xml | 2 |
1 files changed, 1 insertions, 1 deletions
diff --git a/man/systemd.exec.xml b/man/systemd.exec.xml index f70e5c36d4..2054267b90 100644 --- a/man/systemd.exec.xml +++ b/man/systemd.exec.xml @@ -168,7 +168,7 @@ cannot leave files around after unit termination. Moreover <varname>ProtectSystem=strict</varname> and <varname>ProtectHome=read-only</varname> are implied, thus prohibiting the service to write to arbitrary file system locations. In order to allow the service to write to certain directories, they have to be whitelisted - using <varname>ReadWritePaths=</varname>, but care must be taken so that that UID/GID recycling doesn't + using <varname>ReadWritePaths=</varname>, but care must be taken so that UID/GID recycling doesn't create security issues involving files created by the service. Use <varname>RuntimeDirectory=</varname> (see below) in order to assign a writable runtime directory to a service, owned by the dynamic user/group and removed automatically when the unit is terminated. Defaults to off.</para></listitem> |