Can mkosi replace Kickkstart / Calamares?

Hi, I am maintaining a systemd, Debian-based Linux distribution (Kicksecure) and am considering moving to mkosi as the "base image creation tool". It seems mkosi is a fine OS image builder. With systemd-repart, you even solved the resizing of partitions at the first boot, which is magic.

[systemd-devel] systemd unit file to remount /home /tmp /dev/shm /run with nosuid, nodev

Hello, a script to remount /home /tmp /dev/shm /run (configurable) with nosuid,nodev (+noexec configurable) has been created by me. The purpose of remounting is increasing the security of the system. The script shall run as early as reasonably possible during boot. The systemd unit file [1] and

[systemd-devel] How to have systemd --user instance share the same environment variables as the X server?

Being on Debian stretch (Qubes). The display manager there does not yet get started by systemd --user. I find it useful to convert /etc/xdg/autostart/app.desktop files to systemd --user unit files. Therefore the environment variables have to be sorted out. On any Linux we would have to set at

[systemd-devel] Can a systemd --user instance rely on After= of systemd --system instance?

Hi, I read, that a systemd --user instance cannot use Requires=. But what about After=? Can a systemd --user instance use After=some-system.service? Cheers, Patrick ___ systemd-devel mailing list systemd-devel@lists.freedesktop.org

[systemd-devel] redirect multiple local ports to corresponding remote IPs / ports?

systemd directive ListenStream and systemd-socket-proxyd is really useful. Let's say I want to redirect... ListenStream=80 ListenStream=81 etc. ExecStart=/usr/lib/systemd/systemd-socket-proxyd Is there during ExecStart some way to get the ListenStream port? I.e.

Re: [systemd-devel] How to securely load a firewall before networking gets up?

Thank you! I forwarded your review in form of bug reports to the affected projects. [1] [2] Lennart Poettering: > On Thu, 28.07.16 17:29, Patrick Schleizer (patrick-mailingli...@whonix.org) > wrote: > >> TLDR: >> >> How to securely load a firewall before networ

[systemd-devel] How to securely load a firewall before networking gets up?

TLDR: How to securely load a firewall before networking gets up? Can you provide a secure, recommended or even canonical example of such a firewall.service? Long: Various people have come up with a different implementations and systemd.special documentation makes me wonder if my own

[systemd-devel] understanding systemd ordering vs dependencies

Hi! I am trying to understand systemd ordering vs dependencies. When I am already using Wants=, why should I also add After=? When I am already using After=, why should I also add Wants=? Systemd ordering with Before= and After= is more about speed concerns? Such as for example to express "i

[systemd-devel] how to use per-user systemd --user services / how to replace /etc/xdg/autostart/app.desktop?

Hi! I would like to replace some /etc/xdg/autostart/app.desktop files with systemd --user services. I believe these are better because then systemd keywords such as 'After=' etc. can be used. Is this a use case systemd can be used for? Once the user logs in, the systemd --user service should

[systemd-devel] systemctl list failed daemons in computer-parsable format?

Hi, does systemctl or some other tool have a method to create computer-parsable format for failed systemd daemons? Cheers, Patrick ___ systemd-devel mailing list systemd-devel@lists.freedesktop.org