summaryrefslogtreecommitdiffstats
path: root/man/systemd.exec.xml (follow)
Commit message (Expand)AuthorAgeFilesLines
* man: improve documentation on seccomp regarding alternative ABIsLennart Poettering2017-02-091-23/+40
* Revert "core/execute: set HOME, USER also for root users"Lennart Poettering2017-02-091-1/+3
* Merge pull request #4962 from poettering/root-directory-2Zbigniew Jędrzejewski-Szmek2017-02-091-22/+47
|\
| * man: add more commas for clarify and reword a few sentencesZbigniew Jędrzejewski-Szmek2017-02-091-7/+7
| * core: add RootImage= setting for using a specific image file as root director...Lennart Poettering2017-02-071-21/+32
| * core: add a per-unit setting MountAPIVFS= for mounting /dev, /proc, /sys in c...Lennart Poettering2017-02-071-2/+16
* | seccomp: on s390 the clone() parameters are reversedLennart Poettering2017-02-081-5/+4
* | seccomp: MemoryDenyWriteExecute= should affect both mmap() and mmap2() (#5254)Lennart Poettering2017-02-081-16/+14
|/
* man: Document that RestrictAddressFamilies= doesn't work on s390/s390x/...Lennart Poettering2017-02-061-33/+22
* core/execute: set HOME, USER also for root usersZbigniew Jędrzejewski-Szmek2017-02-031-3/+1
* man: fix spelling error parth -> pathBrandon Philips2017-02-021-1/+1
* man: fix typos (#5109)Jakub Wilk2017-01-191-1/+1
* Merge pull request #4991 from poettering/seccomp-fixZbigniew Jędrzejewski-Szmek2017-01-181-0/+8
|\
| * seccomp: add two new filter sets: @reboot and @swapLennart Poettering2016-12-271-0/+8
* | Merge pull request #5009 from ian-kelling/ian-mnt-namespace-docZbigniew Jędrzejewski-Szmek2017-01-111-1/+5
|\ \
| * | man: document mount deletion between commandsIan Kelling2017-01-031-1/+5
* | | doc: MountFlags= don't reference container which may not exist (#5011)Ian Kelling2017-01-031-3/+3
* | | doc: correct "or" to "and" in MountFlags= description (#5010)Ian Kelling2017-01-031-1/+1
|/ /
* | Merge pull request #4994 from poettering/private-tmp-tmpfilesMartin Pitt2016-12-291-6/+9
|\ \
| * | core: implicitly order units with PrivateTmp= after systemd-tmpfiles-setup.se...Lennart Poettering2016-12-271-6/+9
| |/
* / man: add brief documentation for the (sd-pam) processes created due to PAMNam...Lennart Poettering2016-12-291-8/+11
|/
* core: add ability to define arbitrary bind mounts for servicesLennart Poettering2016-12-141-0/+25
* man: fix $SERVICE_RESULT/$EXIT_CODE/$EXIT_STATUS documentationJouke Witteveen2016-12-061-3/+12
* bus-util: add protocol error type explanationJouke Witteveen2016-11-291-3/+3
* man: document protocol error type for service failures (#4724)Jouke Witteveen2016-11-231-8/+9
* seccomp: add @filesystem syscall group (#4537)Lennart Poettering2016-11-221-0/+4
* namespace: simplify, optimize and extend handling of mounts for namespaceLennart Poettering2016-11-171-7/+13
* doc: move ProtectKernelModules= documentation near ProtectKernelTunalbes=Djalal Harouni2016-11-151-24/+24
* doc: note when no new privileges is impliedDjalal Harouni2016-11-151-8/+28
* core: add new RestrictNamespaces= unit file settingLennart Poettering2016-11-041-16/+34
* Merge pull request #4548 from keszybz/seccomp-helpZbigniew Jędrzejewski-Szmek2016-11-041-5/+11
|\
| * seccomp-util, analyze: export comments as a help stringZbigniew Jędrzejewski-Szmek2016-11-031-3/+3
| * analyze: add syscall-filter verbZbigniew Jędrzejewski-Szmek2016-11-031-2/+8
* | doc: clarify NoNewPrivileges (#4562)Kees Cook2016-11-041-4/+4
|/
* man: document that too strict system call filters may affect the service managerLennart Poettering2016-11-021-0/+8
* seccomp: add two new syscall groupsLennart Poettering2016-11-021-0/+8
* man: two minor fixesLennart Poettering2016-11-021-2/+2
* seccomp: include pipes and memfd in @ipcLennart Poettering2016-11-021-1/+1
* seccomp: drop execve() from @process listLennart Poettering2016-11-021-1/+1
* seccomp: add clock query and sleeping syscalls to "@default" groupLennart Poettering2016-11-021-24/+14
* seccomp: allow specifying arm64, mips, ppc (#4491)Zbigniew Jędrzejewski-Szmek2016-11-011-22/+19
* man: fix typos (#4527)Jakub Wilk2016-10-311-2/+2
* Merge pull request #4495 from topimiettinen/block-shmat-execDjalal Harouni2016-10-281-4/+7
|\
| * seccomp: also block shmat(..., SHM_EXEC) for MemoryDenyWriteExecuteTopi Miettinen2016-10-261-4/+7
* | man: document the default value of NoNewPrivileges=Zbigniew Jędrzejewski-Szmek2016-10-251-7/+16
|/
* man: document default for User=Lennart Poettering2016-10-201-2/+7
* core/exec: add a named-descriptor option ("fd") for streams (#4179)Luca Bruno2016-10-181-6/+40
* man: avoid abbreviated "cgroups" terminology (#4396)Lennart Poettering2016-10-171-2/+1
* man: add crosslink between systemd.resource-control(5) and systemd.exec(5)Zbigniew Jędrzejewski-Szmek2016-10-161-0/+5
* Merge pull request #4243 from endocode/djalal/sandbox-first-protection-kernel...Lennart Poettering2016-10-131-3/+26
|\
generated by cgit v1.2.3 (git 2.39.1) at 2024-12-04 17:19:06 +0100