X-Git-Url: https://www.chiark.greenend.org.uk/ucgi/~ianmdlvl/git?a=blobdiff_plain;f=README;h=f01087ff44ce53cadc010216bba2fa87f1cbb85f;hb=2d2ebaf5152cfc232aec61aad5138adc950f4b5c;hp=795db89a77793868139a4bb0931b4900a67fd611;hpb=d28315e4aff91560ed4c2fc9f876ec8bfc559f2d;p=elogind.git diff --git a/README b/README index 795db89a7..f01087ff4 100644 --- a/README +++ b/README @@ -97,7 +97,7 @@ REQUIREMENTS: If systemd is compiled with libseccomp support on architectures which do not use socketcall() and where seccomp is supported (this effectively means x86-64 and ARM, but - excludes 32bit x86!), then nspawn will now install a + excludes 32-bit x86!), then nspawn will now install a work-around seccomp filter that makes containers boot even with audit being enabled. This works correctly only on kernels 3.14 and newer though. TL;DR: turn audit off, still. @@ -183,6 +183,18 @@ USERS AND GROUPS: exist. During execution this network facing service will drop privileges and assume this uid/gid for security reasons. + Similar, the NTP daemon requires the "systemd-timesync" system + user and group to exist. + + Similar, the network management daemon requires the + "systemd-network" system user and group to exist. + + Similar, the name resolution daemon requires the + "systemd-resolve" system user and group to exist. + + Similar, the kdbus dbus1 proxy daemon requires the + "systemd-bus-proxy" system user and group to exist. + WARNINGS: systemd will warn you during boot if /etc/mtab is not a symlink to /proc/mounts. Please ensure that /etc/mtab is a @@ -200,7 +212,7 @@ WARNINGS: supported anymore by the basic set of Linux OS components. systemd requires that the /run mount point exists. systemd also - requires that /var/run is a a symlink → /run. + requires that /var/run is a a symlink to /run. For more information on this issue consult http://freedesktop.org/wiki/Software/systemd/separate-usr-is-broken