Lintian ReportsBETA

Psystemd-service-file-missing-hardening-features

Tag versions

The tag is present in Lintian version 2.104.234. That is the most recent version we know about.

The specified systemd .service file does not appear to enable any hardening options.

systemd has support for many security-oriented features such as isolating services from the network, private /tmp directories, as well as control over making directories appear read-only or even inaccessible, etc.

Please consider supporting some options, collaborating upstream where necessary about any potential changes.

Refer to the systemd.service(5) manual page and http://0pointer.de/blog/projects/security.html for details.

This tag is experimental.

Visibility: pedantic

Check: systemd

The following 482 source packages in the archive triggered the tag 795 times.

We found 17 overrides. The tag performed 98% of the time.