chiark / gitweb /
~ianmdlvl / elogind.git / blobdiff
? search:
summary | shortlog | log | commit | commitdiff | tree
raw | inline | side by side
resolved: run as unpriviliged "systemd-resolve" user
[elogind.git] / README
diff --git a/README b/README
index 0031facf4625856a7114fb33474688826198d60c..adc5b081d26266cee5ecc8a691427bd464e7157e 100644 (file)
--- a/README
+++ b/README
@@ -188,6 +188,16 @@ USERS AND GROUPS:
         will drop privileges (with the exception of CAP_SYS_TIME) and
         assume this uid/gid for security reasons.
 
+        The network management daemon requires the "systemd-network"
+        system user and group to exist. During execution this network
+        facing service will drop privileges (with the exception of
+        CAP_NET_*) and assumed this uid/gid for security reasons.
+
+        The name resolution daemon requires the "systemd-resolve"
+        system user and group to exist. During execution this network
+        facing service will drop privileges and assume this uid/gid
+        for security reasons.
+
 WARNINGS:
         systemd will warn you during boot if /etc/mtab is not a
         symlink to /proc/mounts. Please ensure that /etc/mtab is a
Unnamed repository; edit this file 'description' to name the repository.