Bug#996927: Drop NSCD_SOCKET_OLD and harden systemd unit?

Trent W. Buck wrote: > RuntimeDirectory=unscd That's a typo, it should be "RuntimeDirectory=nscd". Testing didn't catch it until I did a reboot, because the non-systemd doesn't remove /run/nscd when unscd stops.

Bug#996927: Drop NSCD_SOCKET_OLD and harden systemd unit?

Package: unscd Version: 0.54-1 Severity: wishlist I wrote a hardening dropin (attached) for unscd.service. $ systemd-analyze security UNIT EXPOSURE PREDICATE HAPPY unscd.service 9.6 UNSAFE # before unscd.service 1.1 OK # after Please