On Thu, Feb 24, 2022 at 02:28:56PM -0500, Rahul Sundaram wrote: > Hi > > On Thu, Feb 24, 2022 at 2:14 PM Zbigniew Jędrzejewski-Szmek > > > > > Systemd 250 (coming in F36), has --security-policy switch which can be > > used to enable/disable some of the checks. There is no way to tell > > systemd-analyze that things about a specific unit though. > > Ability to modify these policies via configuration (the above one looks > like a build config) and ability to do global overrides and set the > hardening features across all services so distributions or sysadmins can > configure those would be helpful It's a runtime config. Agreed with the rest though, and what Matthew Miller said in the other reply: volunteers welcome ;) Zbyszek _______________________________________________ devel mailing list -- devel@xxxxxxxxxxxxxxxxxxxxxxx To unsubscribe send an email to devel-leave@xxxxxxxxxxxxxxxxxxxxxxx Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/devel@xxxxxxxxxxxxxxxxxxxxxxx Do not reply to spam on the list, report it: https://pagure.io/fedora-infrastructure
