Hi,
Thank you for your contribution!
26.03.2020 16:37, Dulmandakh Sukhbaatar wrote:
> Hello,
>
> I would like to propose to harden nginx.service with systems configurations,
> and this change uses PrivateDevices=yes, PrivateTmp=yes and
> ProtectSystem=full configs. And here are excerpts from m
Hello,
I would like to propose to harden nginx.service with systems configurations,
and this change uses PrivateDevices=yes, PrivateTmp=yes and ProtectSystem=full
configs. And here are excerpts from man systemd.exec man page.
PrivateDevices=yes
sets up a new /dev mount for the executed processe
