GNU social JP
  • FAQ
  • Login
GNU social JPは日本のGNU socialサーバーです。
Usage/ToS/admin/test/Pleroma FE

  • Public

    • Public
    • Network
    • Groups
    • Featured
    • Popular
    • People

Conversation

Notices

  1. Embed this notice
    bluca (bluca@fosstodon.org)'s status on Saturday, 20-Apr-2024 07:35:57 JST bluca bluca
    in reply to
    • Lennart Poettering
    • Richard Hughes

    @hughsie @pid_eins it's not documented, but you can see the list here: https://github.com/systemd/systemd/blob/bf49f3bb441b58c40b3e595bc5a5561051719d1c/src/shared/seccomp-util.c#L884

    and yes, that includes mlock

    In conversation about a year ago from fosstodon.org permalink

    Attachments

    1. Domain not in remote thumbnail source whitelist: repository-images.githubusercontent.com
      systemd/src/shared/seccomp-util.c at bf49f3bb441b58c40b3e595bc5a5561051719d1c · systemd/systemd
      The systemd System and Service Manager . Contribute to systemd/systemd development by creating an account on GitHub.
    • James Morris likes this.
    • Embed this notice
      Richard Hughes (hughsie@mastodon.social)'s status on Saturday, 20-Apr-2024 07:35:58 JST Richard Hughes Richard Hughes
      • Lennart Poettering

      @pid_eins is it expected a service can do mlock() when it has just allow-listed SystemCallFilter=@system-service? I couldn't find any docs on what caps system-service actually maps to.

      We're trying to move from denying-listing caps to allow-listing in #fwupd. Thanks!

      In conversation about a year ago permalink

Feeds

  • Activity Streams
  • RSS 2.0
  • Atom
  • Help
  • About
  • FAQ
  • TOS
  • Privacy
  • Source
  • Version
  • Contact

GNU social JP is a social network, courtesy of GNU social JP管理人. It runs on GNU social, version 2.0.2-dev, available under the GNU Affero General Public License.

Creative Commons Attribution 3.0 All GNU social JP content and data are available under the Creative Commons Attribution 3.0 license.