interesting
/
getdns
mirror of https://github.com/getdnsapi/getdns.git
1
0
Fork 0
Code Issues Projects Releases Wiki Activity
getdns/systemd
History
Daniel Kahn Gillmor e845ef8968 Provide guidance for integration with systemd 
Stubby needs to be able to bind to privileged ports, but otherwise
shouldn't need root capabilities.

systemd makes it easy to set the minimal capability set while
otherwise launching the daemon as a non-privileged user.

Ship these files upstream for distributors to deploy.
 		2017-04-27 12:10:41 -07:00
..
README.md Provide guidance for integration with systemd 2017-04-27 12:10:41 -07:00
stubby.conf Provide guidance for integration with systemd 2017-04-27 12:10:41 -07:00
stubby.service Provide guidance for integration with systemd 2017-04-27 12:10:41 -07:00

README.md

Stubby integration with systemd

For GNU/Linux operating systems which use systemd as a process manager, you might want to run stubby as a system service.

This directory provides recommended systemd unit files.

This setup assumes that there is a system-level user named "stubby" which is in group "stubby", and try to limit the privileges of the running daemon to that user as closely as possible.

Normally, a downstream distributor will install them as:

/usr/lib/tmpfiles.d/stubby.conf
/lib/systemd/system/stubby.service