From: "Ludovic Courtès" <ludo@gnu.org>
To: Leo Famulari <leo@famulari.name>
Cc: 47013@debbugs.gnu.org
Subject: [bug#47013] [PATCH] gnu: Harden filesystem links.
Date: Tue, 16 Mar 2021 22:42:24 +0100 [thread overview]
Message-ID: <87blbi7p33.fsf_-_@gnu.org> (raw)
In-Reply-To: <YE+txs/5q6sfGsKn@jasmine.lan> (Leo Famulari's message of "Mon, 15 Mar 2021 14:56:06 -0400")
Hi!
Leo Famulari <leo@famulari.name> skribis:
> From 38f1aaf8b44739ccfb1f824c7fb85d4dc6b5d991 Mon Sep 17 00:00:00 2001
> From: Leo Famulari <leo@famulari.name>
> Date: Mon, 15 Mar 2021 14:51:52 -0400
> Subject: [PATCH 1/2] services: sysctl: Add a service to set default kernel
> parameters.
>
> * gnu/services/sysctl.scm (default-sysctl-settings-service-type): New public
> variable.
> * doc/guix.texi (Miscellaneous Services): Document it.
>
> Co-authored-by: Julien Lepiller <julien@lepiller.eu>
[...]
> +(define default-sysctl-settings-service-type
> +; "Return a service that is used to set default kernel parameters for Guix
> +; System."
> + (service-type
> + (name 'default-sysctl-settings)
> + (extensions
> + (list (service-extension sysctl-service-type
> + identity)))))
[...]
> + (service default-sysctl-settings-service-type
> + '(("fs.protected_hardlinks" . "1")
> + ("fs.protected_symlinks" . "1")))
Why not just use ‘sysctl-service-type’ here?
‘default-sysctl-settings-service-type’ looks very much like
‘sysctl-service-type’, but I’m not sure we need a second one?
Thanks!
Ludo’.
next prev parent reply other threads:[~2021-03-16 21:51 UTC|newest]
Thread overview: 18+ messages / expand[flat|nested] mbox.gz Atom feed top
2021-03-08 20:50 [bug#47013] [PATCH] gnu: Harden filesystem links Leo Famulari
2021-03-12 22:05 ` Leo Famulari
2021-03-12 22:51 ` Leo Famulari
2021-03-15 18:56 ` Leo Famulari
2021-03-15 20:23 ` Julien Lepiller
2021-03-18 17:39 ` Leo Famulari
2021-03-18 19:45 ` Julien Lepiller
2021-03-16 21:42 ` Ludovic Courtès [this message]
2021-03-16 22:18 ` Ludovic Courtès
2021-03-17 0:54 ` Leo Famulari
2021-03-17 2:14 ` [bug#47013] [PATCH v4] " Leo Famulari
2021-03-17 20:49 ` [bug#47013] [PATCH] " Ludovic Courtès
2021-03-17 21:01 ` Leo Famulari
2021-03-18 7:27 ` Leo Famulari
2021-03-18 9:36 ` Ludovic Courtès
2021-03-18 17:25 ` Leo Famulari
2021-03-24 7:19 ` [bug#47013] (no subject) muradm
2021-03-24 10:38 ` [bug#47013] services: export sysctl-configuration record field accessors muradm
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
List information: https://guix.gnu.org/
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=87blbi7p33.fsf_-_@gnu.org \
--to=ludo@gnu.org \
--cc=47013@debbugs.gnu.org \
--cc=leo@famulari.name \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
Code repositories for project(s) associated with this public inbox
https://git.savannah.gnu.org/cgit/guix.git
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox;
as well as URLs for read-only IMAP folder(s) and NNTP newsgroup(s).