On Mon, Dec 06, 2010 at 06:55:20PM +0100, MichaÅ Piotrowski wrote: > W dniu 6 grudnia 2010 18:43 uÅytkownik Kevin Fenzi <kevin@xxxxxxxxx> napisaÅ: > > On Mon, 6 Dec 2010 18:17:51 +0100 > > MichaÅ Piotrowski <mkkp4x4@xxxxxxxxx> wrote: > > > >> W dniu 6 grudnia 2010 18:01 uÅytkownik Kevin Fenzi <kevin@xxxxxxxxx> > >> napisaÅ: > > > > ...snip... > > > >> > What are you trying to do? > >> > >> I'm trying to convert sysvinit scripts to systemd services (as many > >> as possible) > > > > If you're trying to determine what units should be enabled by default, > > please talk to the Fedora Packaging Comittee. > > > > See also: > > https://fedorahosted.org/fesco/ticket/504 > > > > Where fesco decided: > > > > "Default is off, exceptions exist to allow proper functioning of the > > os. FPC to document exceptions and process exception requests." > > > > FPC was going to work on a exceptions list I think... > > This list will be useful. > > Dear FPC people, could you provide this list in the near future? > Feedback appreciated -- what do you think should be on? What do you think should be off? Right now I think we'd make an exception for ssh (a really big exception since it's a network facing service, even). Dbus and default syslog variant also spring to mind which might be. Those might be able to start defining a category of "things needed to run a desktop session" or something. iptables, auditd, restorecond sound like keepers -- maybe a category here would be things that add to system security in a default install. For this category we'd want to be careful, do we also want to allow fail2ban or denyhosts to run by default if they're installed? Other categories or specific examples would be good. -Toshio
Attachment:
pgpvlVoE47MZJ.pgp
Description: PGP signature
-- devel mailing list devel@xxxxxxxxxxxxxxxxxxxxxxx https://admin.fedoraproject.org/mailman/listinfo/devel
