man: document that ReadOnlyPaths= doesn't affect ability to connect to AF_UNIX

author Lennart Poettering <lennart@poettering.net>

Mon, 22 Apr 2024 11:02:08 +0000 (13:02 +0200)

committer Lennart Poettering <lennart@poettering.net>

Mon, 22 Apr 2024 13:16:54 +0000 (15:16 +0200)
author Lennart Poettering <lennart@poettering.net>
Mon, 22 Apr 2024 11:02:08 +0000 (13:02 +0200)
committer Lennart Poettering <lennart@poettering.net>
Mon, 22 Apr 2024 13:16:54 +0000 (15:16 +0200)
diff --git a/man/systemd.exec.xml b/man/systemd.exec.xml

index c11c7db706f1cefbafc2aea9ce4472d262c1e85d..44233d0265f3d5bf1eedde5f19738f49845747be 100644 (file)
--- a/man/systemd.exec.xml
+++ b/man/systemd.exec.xml
@@ -1383,6 +1383,11 @@ CapabilityBoundingSet=~CAP_B CAP_C</programlisting>
      accessible to privileged processes. However, most namespacing settings, that will not work on their own in user
      services, will work when used in conjunction with <varname>PrivateUsers=</varname><option>true</option>.</para>
  
+    <para>Note that the various options that turn directories read-only (such as
+    <varname>ProtectSystem=</varname>, <varname>ReadOnlyPaths=</varname>, …) do not affect the ability for
+    programs to connect to and communicate with <constant>AF_UNIX</constant> sockets in these
+    directores. These options cannot be used to lock down access to IPC services hence.</para>
+
      <variablelist class='unit-directives'>
  
        <varlistentry>
author	Lennart Poettering <lennart@poettering.net>
	Mon, 22 Apr 2024 11:02:08 +0000 (13:02 +0200)
committer	Lennart Poettering <lennart@poettering.net>
	Mon, 22 Apr 2024 13:16:54 +0000 (15:16 +0200)