diff options
Diffstat (limited to 'tags/s/systemd-service-file-uses-nobody-or-nogroup.tag')
| -rw-r--r-- | tags/s/systemd-service-file-uses-nobody-or-nogroup.tag | 10 |
1 files changed, 10 insertions, 0 deletions
diff --git a/tags/s/systemd-service-file-uses-nobody-or-nogroup.tag b/tags/s/systemd-service-file-uses-nobody-or-nogroup.tag new file mode 100644 index 0000000..d755ad5 --- /dev/null +++ b/tags/s/systemd-service-file-uses-nobody-or-nogroup.tag @@ -0,0 +1,10 @@ +Tag: systemd-service-file-uses-nobody-or-nogroup +Severity: warning +Check: systemd +Explanation: The specified <code>systemd</code> service file declares a <code>User=</code> + or <code>Group=</code> that references <code>nobody</code> or <code>nogroup</code>. + . + The practice is discouraged. Starting with version 246, <code>systemd</code> version will + log a warning about it. +See-Also: + https://github.com/systemd/systemd/blob/v246/NEWS#L106-L113 |