On 11/02/2022 01:08, Stephen Hemminger wrote:
On Fri, 11 Feb 2022 00:57:11 +0000
Wol <antli...@youngman.org.uk> wrote:
I've found the pid0 blog, and had no real trouble (I think, I haven't
tested it yet :-) converting an xinetd setup.
But the documentation (man systemd.service) didn't tell me how to
convert a couple of settings, namely xinetd had "user=" and "group=".
Okay, user= was root, so group= probably doesn't matter either, but how
do you get a service to change user and drop privileges? It would be
nice to know for the future, even the near future to try and modify
qm/scarletdme so it doesn't need root and lower any possible attack surface.
Cheers,
Wol
You probably want DynamicUser=
Thanks. Just looked in the man page and it doesn't appear to be there...
How many other undocumented options are there? :-)
Cheers,
Wol
