Lintian Reports (Beta Testing)

P systemd-service-file-missing-hardening-features

This tag is experimental.

The specified systemd .service file does not appear to enable any hardening options.

systemd has support for many security-oriented features such as isolating services from the network, private /tmp directories, as well as control over making directories appear read-only or even inaccessible, etc.

Please consider supporting some options, collaborating upstream where necessary about any potential changes.

Refer to the systemd.service(5) manual page and http://0pointer.de/blog/projects/security.html for details.

Severity: pedantic

Check: systemd

These source packages in the archive trigger the tag.