Re: [systemd-devel] Add filesystem paths to InaccessiblePaths globally for some paths ?

On Tue, Feb 11, 2025 at 5:53 PM Steve Traylen wrote: > > Units like "systemd-resolved.service" contain with good reason: > "ProtectSystem=strict" > > This of course bind mounts mounted filesystems into the units userspace. > > "strict" is > > "If set to "strict" the entire file system hierarchy i

[systemd-devel] Need Advice about MaxConnections on ssh.socket

Hi, I am using ssh.socket to invoke ssh servers. What is not running cannot fail: [Unit] Description=OpenBSD Secure Shell server socket Before=ssh.service Conflicts=ssh.service ConditionPathExists=!/etc/ssh/sshd_not_to_be_run [Socket] ListenStream=22 Accept=yes [Install] WantedBy=sockets.target

[systemd-devel] Add filesystem paths to InaccessiblePaths globally for some paths ?

Units like "systemd-resolved.service" contain with good reason: "ProtectSystem=strict" This of course bind mounts mounted filesystems into the units userspace. "strict" is "If set to "strict" the entire file system hierarchy is mounted read-only, except for the API file system subtrees /de