commit redis for openSUSE:Factory

Wed, 24 Nov 2021 15:05:12 -0800 

Script 'mail_helper' called by obssrc
Hello community,

here is the log from the commit of package redis for openSUSE:Factory checked 
in at 2021-11-24 23:54:12
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Comparing /work/SRC/openSUSE:Factory/redis (Old)
 and      /work/SRC/openSUSE:Factory/.redis.new.1895 (New)
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++

Package is "redis"

Wed Nov 24 23:54:12 2021 rev:75 rq:932987 version:6.2.6

Changes:
--------
--- /work/SRC/openSUSE:Factory/redis/redis.changes      2021-10-08 
22:05:06.572566174 +0200
+++ /work/SRC/openSUSE:Factory/.redis.new.1895/redis.changes    2021-11-24 
23:54:20.376505788 +0100
@@ -1,0 +2,7 @@
+Mon Nov 15 12:57:13 UTC 2021 - Johannes Segitz <jseg...@suse.com>
+
+- Added hardening to systemd service(s) (bsc#1181400). Modified:
+  * redis-sentinel@.service
+  * redis@.service
+
+-------------------------------------------------------------------

++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++

Other differences:
------------------
++++++ redis-sentinel@.service ++++++
--- /var/tmp/diff_new_pack.o2K8PA/_old  2021-11-24 23:54:21.012503653 +0100
+++ /var/tmp/diff_new_pack.o2K8PA/_new  2021-11-24 23:54:21.012503653 +0100
@@ -8,6 +8,19 @@
 User=redis
 Group=redis
 PrivateTmp=true
+# added automatically, for details please see
+# https://en.opensuse.org/openSUSE:Security_Features#Systemd_hardening_effort
+ProtectSystem=full
+ProtectHome=true
+PrivateDevices=true
+ProtectHostname=true
+ProtectClock=true
+ProtectKernelTunables=true
+ProtectKernelModules=true
+ProtectKernelLogs=true
+ProtectControlGroups=true
+RestrictRealtime=true
+# end of automatic additions 
 PIDFile=/run/redis/sentinel-%i.pid
 ExecStart=/usr/sbin/redis-sentinel /etc/redis/sentinel-%i.conf
 LimitNOFILE=10240

++++++ redis@.service ++++++
--- /var/tmp/diff_new_pack.o2K8PA/_old  2021-11-24 23:54:21.088503398 +0100
+++ /var/tmp/diff_new_pack.o2K8PA/_new  2021-11-24 23:54:21.088503398 +0100
@@ -8,6 +8,19 @@
 User=redis
 Group=redis
 PrivateTmp=true
+# added automatically, for details please see
+# https://en.opensuse.org/openSUSE:Security_Features#Systemd_hardening_effort
+ProtectSystem=full
+ProtectHome=true
+PrivateDevices=true
+ProtectHostname=true
+ProtectClock=true
+ProtectKernelTunables=true
+ProtectKernelModules=true
+ProtectKernelLogs=true
+ProtectControlGroups=true
+RestrictRealtime=true
+# end of automatic additions 
 PIDFile=/run/redis/%i.pid
 ExecStart=/usr/sbin/redis-server /etc/redis/%i.conf
 LimitNOFILE=10240

Reply via email to