Package: yubikey-server-c Version: 0.5-1.1 Severity: normal Dear Maintainer,
Please consider adding a native systemd service masking the shipped init scripts (fixing lintian tag[1] in subject). I'm attaching a completely untested attempt at writing such a service file that I created after quickly looking over what the init script does and some basic command line and config interaction in the code. Hopefully it'll be useful as a base for your work. I'm happy to help extend it further, if you do the testing and review (as I don't personally use this package). For extra bonus points: - implement sd_notify support when running in foreground mode and switch service to use Type=notify (see src/main.c if (!foreground) ...). - investigate adding security hardening settings[2]. Regards, Andreas Henriksson PS. The DESC field of the init script contains boilerplate text. [1]: https://lintian.debian.org/tags/missing-systemd-service-for-init.d-script.html [2]: https://lintian.debian.org/tags/systemd-service-file-missing-hardening-features.html
[Unit] Description="Yubikey validation server" After=network.target [Service] Type=simple ExecStart=/usr/sbin/yubikeyd -f -c /etc/yubikeyd.conf $DAEMON_ARGS User=yubikeyd Group=yubikeyd [Install] WantedBy=multi-user.target
