Re: Question about writing systemd unit for old package

To: debian-mentors@lists.debian.org
Subject: Re: Question about writing systemd unit for old package
From: Richard Hector <richard@walnut.gen.nz>
Date: Wed, 19 May 2021 20:27:48 +1200
Message-id: <[🔎] 7fd0210f-8107-a4d6-cba1-278e08f39edc@walnut.gen.nz>
In-reply-to: <[🔎] CAKTje6E4rx07CpNZ2_UMDz0S84WNuOCaTzg+whaegj88UPuVBQ@mail.gmail.com>
References: <[🔎] YKJiqjF2HTbYGL70@rue.localhost> <[🔎] CAKTje6E4rx07CpNZ2_UMDz0S84WNuOCaTzg+whaegj88UPuVBQ@mail.gmail.com>

On 18/05/21 11:58 am, Paul Wise wrote:

On Mon, May 17, 2021 at 12:51 PM Khoa Tran Minh wrote:

A related question: The binary itself can drop privilege and run as
non-root, then should I use that native feature or use systemd User= when
writing a default config/unit ?


I would suggest to use systemd features for this.

Does that not depend on whether it does anything before droppingprivileges? For example, a webserver can bind to low ports beforedropping privilege. I imagine if the systemd service unit specifiedrunning as (eg) www-data, that wouldn't work.


Cheers,
Richard

Reply to:

Follow-Ups:
- Re: Question about writing systemd unit for old package
  - From: Paul Wise <pabs@debian.org>

References:
- Question about writing systemd unit for old package
  - From: Khoa Tran Minh <ktm8@posteo.de>
- Re: Question about writing systemd unit for old package
  - From: Paul Wise <pabs@debian.org>

Prev by Date: Re: bitz-server: package is not in any development repository ...
Next by Date: Re: Question about writing systemd unit for old package
Previous by thread: Re: Question about writing systemd unit for old package
Next by thread: Re: Question about writing systemd unit for old package
Index(es):
- Date
- Thread