systemd hardening/privilege separation

For systems that use systemd, there are various thing inadyn could do to make it safer to use by default.  What I mean by "safer" is, specifically, restricting privileges of inadyn to the bare minimum of what it needs to function. The point is to facilitate defense-in-depth of internet facing services.

There are a few things I'm thinking of in particular:

1. "Plain" hardening, such as things like [`ProtectHome=`](https://www.freedesktop.org/software/systemd/man/latest/systemd.exec.html#ProtectHome=), or [`RestrictNamespace=`](https://www.freedesktop.org/software/systemd/man/latest/systemd.exec.html#RestrictNamespaces=)
2. Using [tmpfiles](https://www.freedesktop.org/software/systemd/man/latest/tmpfiles.d.html)/[sysusers ](https://www.freedesktop.org/software/systemd/man/latest/sysusers.d.html#) to automatically create an unprivileged user with the right permissions
3. Support for [credentials](https://systemd.io/CREDENTIALS/) to store passwords encrypted on the disk, and allow configs to access them in the service

I think (1) is pretty straight forward and uncontroversial, but I'm curious about your thoughts on (2) or maybe even (3). I'm willing to make PRs for these features. See also the [Arch Linux package](https://gitlab.archlinux.org/archlinux/packaging/packages/inadyn) build that implements (2). 

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

systemd hardening/privilege separation #503

Metadata

Assignees

Labels

Projects

Milestone

Relationships

Development