top | item 44140244

(no title)

eliaspro | 9 months ago

At a first glance, it looks like every single one of those vulnerabilities is mitigated by mostly standard practices for systemd service units, like not running as root in the first place, using NoNewPrivileges=, ProtectSystem=, PrivateTmp=, StateDirectory= and ConfigurationDirectory= etc

discuss

No comments yet.