aiolabs/nix-bitcoin
1
0
Fork 0
Code Issues Pull requests Projects Releases 1 Packages Wiki Activity Actions

systemd: lock down systemctl status

Browse source 
Mitigates a security issue that allows unprivileged users to read other
unprivileged user's processes' credentials from CGroup using `systemctl
status`.
This commit is contained in:
nixbitcoin 2020-07-27 17:26:45 +00:00
parent 6e694890eb
commit 0248e6493f
No known key found for this signature in database
GPG key ID: DD11F9AD5308B3BA
3 changed files with 59 additions and 0 deletions
Download patch file Download diff file Expand all files Collapse all files

1
modules/modules.nix
View file

@ -15,6 +15,7 @@
./lnd.nix
./secrets/secrets.nix
./netns-isolation.nix
./dbus.nix
];
disabledModules = [ "services/networking/bitcoind.nix" ];