~lukeshu/systemd - Unnamed repository; edit this file 'description' to name the repository.

Age	Commit message (Collapse)	Author
2016-06-13	units: tighten system call filters a bit	Lennart Poettering
	Take away kernel keyring access, CPU emulation system calls and various debug system calls from the various daemons we have.
2016-06-09	units: add a basic SystemCallFilter (#3471)	Topi Miettinen
	Add a line SystemCallFilter=~@clock @module @mount @obsolete @raw-io ptrace for daemons shipped by systemd. As an exception, systemd-timesyncd needs @clock system calls and systemd-localed is not privileged. ptrace(2) is blocked to prevent seccomp escapes.
2016-06-08	units: enable MemoryDenyWriteExecute (#3459)	Topi Miettinen
	Secure daemons shipped by systemd by enabling MemoryDenyWriteExecute. Closes: #3459
2016-02-23	man: link some unit files to their online bus API documentation	Lennart Poettering

2015-09-29	units: increase watchdog timeout to 3min for all our services	Lennart Poettering
	Apparently, disk IO issues are more frequent than we hope, and 1min waiting for disk IO happens, so let's increase the watchdog timeout a bit, for all our services. See #1353 for an example where this triggers.
2015-06-17	turn kdbus support into a runtime option	Kay Sievers
	./configure --enable/disable-kdbus can be used to set the default behavior regarding kdbus. If no kdbus kernel support is available, dbus-dameon will be used. With --enable-kdbus, the kernel command line option "kdbus=0" can be used to disable kdbus. With --disable-kdbus, the kernel command line option "kdbus=1" is required to enable kdbus support.
2015-05-14	units: fix typo in systemd-resolved.service	Lennart Poettering
	There's no network.service unit, we actually mean network.target here. Reported by Fco. Eduardo Ramírez.
2015-03-19	resolved: Do not add .busname dependencies, when compiling without kdbus.	Dimitri John Ledkov