On Fri, Nov 21, 2014 at 03:16:01PM +0900, WaLyong Cho wrote:
In case of systemd has _ label and run as root, if a service file
has User= option and the command line file has a special SMACK label
then systemd will fail to access to given file. SMACK label is ignored
for root uid processes. But
On 11/24/2014 02:36 AM, Zbigniew Jędrzejewski-Szmek wrote:
On Fri, Nov 21, 2014 at 03:16:01PM +0900, WaLyong Cho wrote:
In case of systemd has _ label and run as root, if a service file
has User= option and the command line file has a special SMACK label
then systemd will fail to access to
In case of systemd has _ label and run as root, if a service file
has User= option and the command line file has a special SMACK label
then systemd will fail to access to given file. SMACK label is ignored
for root uid processes. But if a service has a User= then systemd
will call setresuid() in