Docs/non root user with systemd #269

boenshao · 2023-07-05T11:47:05Z

Quote me,

A typical use case is storing configurations and tokens under /etc/rathole/xxx.toml with permission set to 0600, that is, only the root user (or owner) can read the file. Preventing arbitrary users on the system from accessing the token. Yet with DynamicUser=yes the rathole process spawned by systemd won't have the privilege to read the file either.

This PR update the document with a more comprehensive systemd setup without root privilege.

…th permission 600

rapiz1

Good work! I may be nitpicking but there's an unnecessary change.

examples/systemd/README.md

doc: remove 'DynamicUser=yes', so the service can read config file wi…

1e2838f

…th permission 600

boenshao force-pushed the docs/non-root-user-with-systemd branch from d294298 to 70b759a Compare July 5, 2023 11:47

rapiz1 approved these changes Jul 5, 2023

View reviewed changes

examples/systemd/README.md Outdated Show resolved Hide resolved

doc: add example for non-root systemd service

abb51bf

boenshao force-pushed the docs/non-root-user-with-systemd branch from 70b759a to abb51bf Compare July 5, 2023 13:01

fix(doc): should be 'app2.toml'

9e18e54

rapiz1 merged commit 7923dec into rapiz1:main Jul 7, 2023
5 checks passed

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Docs/non root user with systemd #269

Docs/non root user with systemd #269

boenshao commented Jul 5, 2023

rapiz1 left a comment

Docs/non root user with systemd #269

Docs/non root user with systemd #269

Conversation

boenshao commented Jul 5, 2023

rapiz1 left a comment

Choose a reason for hiding this comment