update TODO

This commit is contained in:
Lennart Poettering 2018-11-26 16:18:41 +01:00
parent 49f3ee7e74
commit 707b3fbd57
1 changed files with 3 additions and 1 deletions

View File

@ -23,7 +23,9 @@ Janitorial Clean-ups:
* when we fork off generators and such, lower LIMIT_NOFILE soft limit to 1K
* Maybe introduce a helper safe_exec() or so, which is to execve() which
safe_fork() is to fork(). And then make revert the RLIMIT_NOFILE soft limit
to 1K implicitly, unless explicitly opted-out.
* rework seccomp/nnp logic that that even if User= is used in combination with
a seccomp option we don't have to set NNP. For that, change uid first whil