systemd/tmpfiles.d
Martin Pitt 797e7a51cd tmpfiles.d: Create /var/lib/containers
Create /var/lib/containers so that it exists with an appropriate mode. We want
0700 by default so that users on the host aren't able to call suid root
binaries in the container. This becomes a security issue if a user can enter a
container as root, create a suid root binary, and call that from the host.
(This assumes that containers are caged by mandatory access control or are
started as user).
2014-11-21 00:34:26 +01:00
..
.gitignore tmpfiles: make resolv.conf entry conditional on resolved support 2014-08-27 18:17:16 +02:00
etc.conf.m4 tmpfiles: make resolv.conf entry conditional on resolved support 2014-08-27 18:17:16 +02:00
legacy.conf tmpfiles: always recreate the most basic directory structure in /var 2014-06-11 00:12:21 +02:00
Makefile journal: add preliminary incomplete implementation 2011-10-07 22:02:05 +02:00
systemd-nologin.conf tmpfiles: introduce the concept of unsafe operations 2013-12-24 15:48:06 -05:00
systemd-remote.conf journal-remote: add units and read certs from default locations 2014-07-15 22:23:49 -04:00
systemd.conf tmpfiles: explicitly set mode for /run/log 2014-06-30 19:53:10 +02:00
tmp.conf namespace: include boot id in private tmp directories 2013-12-13 04:06:43 +01:00
var.conf tmpfiles.d: Create /var/lib/containers 2014-11-21 00:34:26 +01:00
x11.conf tmpfiles: introduce the concept of unsafe operations 2013-12-24 15:48:06 -05:00