index
:
~lukeshu/systemd
elogind/master
eudev/master
notsystemd/master
notsystemd/postmove
notsystemd/premove
notsystemd/wip/cgroup2
notsystemd/wip/nspawn
notsystemd/wip/nspawn-parse
systemd/master
systemd/parabola
Unnamed repository; edit this file 'description' to name the repository.
git-mirror
summary
refs
log
tree
commit
diff
log msg
author
committer
range
path:
root
/
man
/
systemd.exec.xml
Age
Commit message (
Expand
)
Author
2017-02-06
man: Document that RestrictAddressFamilies= doesn't work on s390/s390x/...
Lennart Poettering
2017-02-03
core/execute: set HOME, USER also for root users
Zbigniew Jędrzejewski-Szmek
2017-02-02
man: fix spelling error parth -> path
Brandon Philips
2017-01-19
man: fix typos (#5109)
Jakub Wilk
2017-01-17
Merge pull request #4991 from poettering/seccomp-fix
Zbigniew Jędrzejewski-Szmek
2017-01-11
Merge pull request #5009 from ian-kelling/ian-mnt-namespace-doc
Zbigniew Jędrzejewski-Szmek
2017-01-03
doc: MountFlags= don't reference container which may not exist (#5011)
Ian Kelling
2017-01-03
doc: correct "or" to "and" in MountFlags= description (#5010)
Ian Kelling
2017-01-03
man: document mount deletion between commands
Ian Kelling
2016-12-29
Merge pull request #4994 from poettering/private-tmp-tmpfiles
Martin Pitt
2016-12-29
man: add brief documentation for the (sd-pam) processes created due to PAMNam...
Lennart Poettering
2016-12-27
core: implicitly order units with PrivateTmp= after systemd-tmpfiles-setup.se...
Lennart Poettering
2016-12-27
seccomp: add two new filter sets: @reboot and @swap
Lennart Poettering
2016-12-14
core: add ability to define arbitrary bind mounts for services
Lennart Poettering
2016-12-06
man: fix $SERVICE_RESULT/$EXIT_CODE/$EXIT_STATUS documentation
Jouke Witteveen
2016-11-29
bus-util: add protocol error type explanation
Jouke Witteveen
2016-11-23
man: document protocol error type for service failures (#4724)
Jouke Witteveen
2016-11-21
seccomp: add @filesystem syscall group (#4537)
Lennart Poettering
2016-11-17
namespace: simplify, optimize and extend handling of mounts for namespace
Lennart Poettering
2016-11-15
doc: move ProtectKernelModules= documentation near ProtectKernelTunalbes=
Djalal Harouni
2016-11-15
doc: note when no new privileges is implied
Djalal Harouni
2016-11-04
core: add new RestrictNamespaces= unit file setting
Lennart Poettering
2016-11-03
Merge pull request #4548 from keszybz/seccomp-help
Zbigniew Jędrzejewski-Szmek
2016-11-03
doc: clarify NoNewPrivileges (#4562)
Kees Cook
2016-11-03
seccomp-util, analyze: export comments as a help string
Zbigniew Jędrzejewski-Szmek
2016-11-03
analyze: add syscall-filter verb
Zbigniew Jędrzejewski-Szmek
2016-11-02
man: document that too strict system call filters may affect the service manager
Lennart Poettering
2016-11-02
seccomp: add two new syscall groups
Lennart Poettering
2016-11-02
man: two minor fixes
Lennart Poettering
2016-11-02
seccomp: include pipes and memfd in @ipc
Lennart Poettering
2016-11-02
seccomp: drop execve() from @process list
Lennart Poettering
2016-11-02
seccomp: add clock query and sleeping syscalls to "@default" group
Lennart Poettering
2016-11-01
seccomp: allow specifying arm64, mips, ppc (#4491)
Zbigniew Jędrzejewski-Szmek
2016-10-31
man: fix typos (#4527)
Jakub Wilk
2016-10-28
Merge pull request #4495 from topimiettinen/block-shmat-exec
Djalal Harouni
2016-10-26
seccomp: also block shmat(..., SHM_EXEC) for MemoryDenyWriteExecute
Topi Miettinen
2016-10-24
man: document the default value of NoNewPrivileges=
Zbigniew Jędrzejewski-Szmek
2016-10-20
man: document default for User=
Lennart Poettering
2016-10-17
core/exec: add a named-descriptor option ("fd") for streams (#4179)
Luca Bruno
2016-10-17
man: avoid abbreviated "cgroups" terminology (#4396)
Lennart Poettering
2016-10-15
man: add crosslink between systemd.resource-control(5) and systemd.exec(5)
Zbigniew Jędrzejewski-Szmek
2016-10-13
Merge pull request #4243 from endocode/djalal/sandbox-first-protection-kernel...
Lennart Poettering
2016-10-12
man: typo fixes
Thomas Hindoe Paaboel Andersen
2016-10-12
core:sandbox: lets make /lib/modules/ inaccessible on ProtectKernelModules=
Djalal Harouni
2016-10-12
doc: minor hint about InaccessiblePaths= in regard of ProtectKernelTunables=
Djalal Harouni
2016-10-12
core:sandbox: remove CAP_SYS_RAWIO on PrivateDevices=yes
Djalal Harouni
2016-10-12
core:sandbox: Add ProtectKernelModules= option
Djalal Harouni
2016-10-11
Merge pull request #4348 from poettering/docfixes
Zbigniew Jędrzejewski-Szmek
2016-10-11
man: beef up documentation on per-unit resource limits a bit
Lennart Poettering
2016-10-07
core: add "invocation ID" concept to service manager
Lennart Poettering
[next]