mirror of
https://github.com/systemd/systemd.git
synced 2024-10-27 18:55:40 +03:00
man: document that ProtectSystem= also covers /boot
This commit is contained in:
parent
297d563de4
commit
c51cbfdcc7
@ -1064,13 +1064,14 @@
|
||||
argument or
|
||||
<literal>full</literal>. If true,
|
||||
mounts the <filename>/usr</filename>
|
||||
directory read-only for processes
|
||||
and <filename>/boot</filename>
|
||||
directories read-only for processes
|
||||
invoked by this unit. If set to
|
||||
<literal>full</literal>, the
|
||||
<filename>/etc</filename> directory is mounted
|
||||
read-only, too. This setting ensures
|
||||
that any modification of the vendor
|
||||
supplied operating system (and
|
||||
<filename>/etc</filename> directory is
|
||||
mounted read-only, too. This setting
|
||||
ensures that any modification of the
|
||||
vendor supplied operating system (and
|
||||
optionally its configuration) is
|
||||
prohibited for the service. It is
|
||||
recommended to enable this setting for
|
||||
|
Loading…
Reference in New Issue
Block a user