| Age | Commit message (Collapse) | Author | |
|---|---|---|---|
| 2014-06-03 | core: add new ReadOnlySystem= and ProtectedHome= settings for service units | Lennart Poettering | |
| ReadOnlySystem= uses fs namespaces to mount /usr and /boot read-only for a service. ProtectedHome= uses fs namespaces to mount /home and /run/user inaccessible or read-only for a service. This patch also enables these settings for all our long-running services. Together they should be good building block for a minimal service sandbox, removing the ability for services to modify the operating system or access the user's private data. | |||
| 2014-03-19 | core: enable PrivateNetwork= for a number of our long running services where ↵ | Lennart Poettering | |
| this is useful | |||
| 2013-03-05 | journal: make gatewayd run under its own user ID | Lennart Poettering | |
| 2012-09-28 | journal: add minimal journal gateway daemon based on GNU libmicrohttpd | Lennart Poettering | |
| This minimal HTTP server can serve journal data via HTTP. Its primary purpose is synchronization of journal data across the network. It serves journal data in three formats: text/plain: the text format known from /var/log/messages application/json: the journal entries formatted as JSON application/vnd.fdo.journal: the binary export format of the journal The HTTP server also serves a small HTML5 app that makes use of the JSON serialization to present the journal data to the user. Examples: This downloads the journal in text format: # systemctl start systemd-journal-gatewayd.service # wget http://localhost:19531/entries Same for JSON: # curl -H"Accept: application/json" http://localhost:19531/entries Access via web browser: $ firefox http://localhost:19531/ | |||
 |
index : ~lukeshu/systemd | |
| Unnamed repository; edit this file 'description' to name the repository. | git-mirror |
| summaryrefslogtreecommitdiff |