[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
[bug#47013] [PATCH] gnu: Harden filesystem links.
|
From: |
Leo Famulari |
|
Subject: |
[bug#47013] [PATCH] gnu: Harden filesystem links. |
|
Date: |
Tue, 16 Mar 2021 20:54:52 -0400 |
On Tue, Mar 16, 2021 at 11:18:18PM +0100, Ludovic Courtès wrote:
> Thoughts?
We discussed this on IRC.
Basically, my goal is to make it easy for users to add their own
sysctl-service-type without accidentally removing the default sysctl
settings. My third patch achieves that.
However, you did not like that it required creating a new service type
just to set some defaults.
As a compromise, we could create a new variable %default-sysctl-settings
and add a sysctl-service-type in %base-services that uses that variable.
At least, that way, it would be a little more clear that there are some
defaults. The manual could show users how to append their own sysctl
parameters to %default-sysctl-settings.
While implementing that, I noticed the variable
%default-kernel-arguments in (gnu system).
All these years, I have been setting some custom kernel-arguments, and I
never noticed there was a default value that I was erasing. This
illustrates why I prefer the approach in my 3rd patch. Otherwise, it
will be very easy for users to implicitly and unexpectedly disable the
default parameters we are trying to set, if they try to add their own.
- [bug#47013] [PATCH] gnu: Harden filesystem links., Leo Famulari, 2021/03/08
- [bug#47013] [PATCH] gnu: Harden filesystem links., Leo Famulari, 2021/03/12
- [bug#47013] [PATCH] gnu: Harden filesystem links., Leo Famulari, 2021/03/12
- [bug#47013] [PATCH] gnu: Harden filesystem links., Leo Famulari, 2021/03/15
- [bug#47013] [PATCH] gnu: Harden filesystem links., Ludovic Courtès, 2021/03/16
- [bug#47013] [PATCH] gnu: Harden filesystem links., Julien Lepiller, 2021/03/18
- [bug#47013] [PATCH] gnu: Harden filesystem links., Leo Famulari, 2021/03/18
- [bug#47013] [PATCH] gnu: Harden filesystem links., Julien Lepiller, 2021/03/18
- [bug#47013] [PATCH] gnu: Harden filesystem links., Ludovic Courtès, 2021/03/16
- [bug#47013] [PATCH] gnu: Harden filesystem links.,
Leo Famulari <=
- [bug#47013] [PATCH v4] gnu: Harden filesystem links., Leo Famulari, 2021/03/16
- [bug#47013] [PATCH] gnu: Harden filesystem links., Ludovic Courtès, 2021/03/17
- [bug#47013] [PATCH] gnu: Harden filesystem links., Leo Famulari, 2021/03/17
- [bug#47013] [PATCH] gnu: Harden filesystem links., Leo Famulari, 2021/03/18
- [bug#47013] [PATCH] gnu: Harden filesystem links., Ludovic Courtès, 2021/03/18
- [bug#47013] [PATCH] gnu: Harden filesystem links., Leo Famulari, 2021/03/18
[bug#47013] (no subject), muradm, 2021/03/24
[bug#47013] services: export sysctl-configuration record field accessors, muradm, 2021/03/24