Closed priv-kweihmann closed 4 years ago
According to https://www.ctrl.blog/entry/systemd-service-hardening.html system-analyze can perform some security auditing in unit-files.
That could be a very useful feature - try to imitate the checks to be found in original systemd implementation - Code can be found here https://github.com/systemd/systemd/blob/master/src/analyze/analyze-security.c
According to https://www.ctrl.blog/entry/systemd-service-hardening.html system-analyze can perform some security auditing in unit-files.
That could be a very useful feature - try to imitate the checks to be found in original systemd implementation - Code can be found here https://github.com/systemd/systemd/blob/master/src/analyze/analyze-security.c