Package: systemd
Version: 252.6-1
Severity: wishlist
X-Debbugs-Cc: Undef
Dear Maintainer,
This config, enabled by adding `-DBPF_FRAMEWORK=true` would allow settings such
as
`IPAddressAllow` and RestrictFileSystems` to be used to harden services on
Debian systems.
`CONFIG_BPF_LSM` seems to al
On Thu, 29 Jun 2023 10:16:19 + undef wrote:
> Package: systemd
> Version: 252.6-1
> Severity: wishlist
> X-Debbugs-Cc: Undef
>
> Dear Maintainer,
>
> This config, enabled by adding `-DBPF_FRAMEWORK=true` would allow
settings such as
> `IPAddressAllow` and RestrictFileSystems` to be used to
Package: systemd-boot
Version: 253-4
Severity: minor
Dear maintainers,
the systemd-boot package calls `bootctl update` after the upgrade of the
package. Therefore, it overwrites the currently installed systemd-boot image
(which could be signed for secure boot with a local key) on the ESP with a n
On Jun 29, Jan Naumann wrote:
> Could you please add a hook to the postinst that either a local script can be
> called on installation time which takes care of signing the image (similar to
> the `/etc/kernel/postinst.d/ mechamism) or add some call to `sbsign` yourself
> if
> e.g. the signing ke
#
# bts-link upstream status pull for source package systemd
# see http://lists.debian.org/debian-devel-announce/2006/05/msg1.html
# https://bts-link-team.pages.debian.net/bts-link/
#
user debian-bts-l...@lists.debian.org
# remote status report for #1038901 (http://bugs.debian.org/1038901