Package: hardening-runtime Version: 1 Severity: minor Control: tags -1 + patch
Hi Yves-Alexis There is a small typo in the README.Debian for the instruction to disable the packaging provided settings in /usr/lib/sysctl.d. Regards, Salvatore -- System Information: Debian Release: bullseye/sid APT prefers unstable APT policy: (500, 'unstable'), (1, 'experimental') Architecture: amd64 (x86_64) Kernel: Linux 5.2.0-2-amd64 (SMP w/2 CPU cores) Locale: LANG=C.UTF-8, LC_CTYPE=C.UTF-8 (charmap=UTF-8), LANGUAGE=C.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/dash Init: systemd (via /run/systemd/system) LSM: AppArmor: enabled
>From c51a0ec01ec099562ad8ca50aa5f9d985d697179 Mon Sep 17 00:00:00 2001 From: Salvatore Bonaccorso <car...@debian.org> Date: Wed, 14 Aug 2019 21:08:02 +0200 Subject: [PATCH] Reverse order of wording to disable settings via symlink The used symlink is in /etc/sysctl.d (using the same filename) with target /dev/null to override the settings as provided by the packaging in /usr/lib/sysctl.d/. Signed-off-by: Salvatore Bonaccorso <car...@debian.org> --- debian/README.Debian | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/debian/README.Debian b/debian/README.Debian index 95e4afdb9d8d..5ba3bc764972 100644 --- a/debian/README.Debian +++ b/debian/README.Debian @@ -36,5 +36,5 @@ and systemd-sysctl.service(8) with a configuration file in /usr/lib/sysctl.d. These settings can be overridden by copying the file in /etc/sysctl.d/ (and keeping the same filename) and then doing edits. The file can also be -completely disabled by adding a symlink from /dev/null to /etc/sysctl.d (again -using the same filename) +completely disabled by adding a symlink from /etc/sysctl.d (again using +the same filename) to /dev/null. -- 2.23.0.rc1
