[projects/setup] drop hidepid from default setup
atler
atler at pld-linux.org
Sat Apr 10 14:49:21 CEST 2021
commit 02f73b24d1383679a19b658d0fbad1c7f0796f36
Author: Jan Palus <atler at pld-linux.org>
Date: Sat Apr 10 14:42:40 2021 +0200
drop hidepid from default setup
it breaks polkit [1], causes issues with systemd [2] and likely more.
make it opt-in rather than opt-out by default. security concious people
will more likely know how to add it, rather than new users how to fix broken
apps.
[1] https://bugzilla.redhat.com/show_bug.cgi?id=1130796
[2] https://github.com/systemd/systemd/issues/12955#issuecomment-508490893
etc/fstab | 2 +-
1 file changed, 1 insertion(+), 1 deletion(-)
---
diff --git a/etc/fstab b/etc/fstab
index e3c2241..22af730 100644
--- a/etc/fstab
+++ b/etc/fstab
@@ -9,7 +9,7 @@
#LABEL=/ / ext3 defaults 0 0
#LABEL=swap swap swap defaults 0 0
-none /proc proc defaults,noauto,hidepid=2,gid=17 0 0
+none /proc proc defaults,noauto,gid=17 0 0
none /sys sysfs defaults,noauto 0 0
none /sys/fs/cgroup tmpfs noauto,nosuid,nodev,noexec 0 0
none /proc/bus/usb usbfs noauto,devgid=78,devmode=0664 0 0
================================================================
---- gitweb:
http://git.pld-linux.org/gitweb.cgi/projects/setup.git/commitdiff/02f73b24d1383679a19b658d0fbad1c7f0796f36
More information about the pld-cvs-commit
mailing list