Skip to content
Commit d8e3c31b authored by Topi Miettinen's avatar Topi Miettinen Committed by Lennart Poettering
Browse files

Mount all fs nosuid when NoNewPrivileges=yes 

When `NoNewPrivileges=yes`, the service shouldn't have a need for any
setuid/setgid programs, so in case there will be a new mount namespace anyway,
mount the file systems with MS_NOSUID.
parent aa6dc3ec
Hide whitespace changes
Inline Side-by-side
0% or .
You are about to add 0 people to the discussion. Proceed with caution.
Please register or to comment