Forwarded from Записки админа
🖇 Берём systemd, берём BPF, и с их помощью делаем, например, фаервол. Интересное чтиво, аж в двух частях:
https://kailueke.gitlab.io/systemd-custom-bpf-firewall/
https://kailueke.gitlab.io/systemd-bpf-firewall-loader/
#systemd #bpf #фидбечат
https://kailueke.gitlab.io/systemd-custom-bpf-firewall/
https://kailueke.gitlab.io/systemd-bpf-firewall-loader/
#systemd #bpf #фидбечат
Запускаем systemd в контейнере / Хабр
https://m.habr.com/ru/company/redhatrussia/blog/468931/
#systemd #containers
https://m.habr.com/ru/company/redhatrussia/blog/468931/
#systemd #containers
Хабр
Запускаем systemd в контейнере
Мы давно следим за темой использования systemd в контейнерах. Еще в 2014 году наш инженер по безопасности Дэниел Уолш (Daniel Walsh) написал статью Running systemd within a Docker Container, а еще...
Built-in Firewall for Systemd Services
https://etherarp.net/built-in-firewall-for-systemd-services/
#systemd #fw
https://etherarp.net/built-in-firewall-for-systemd-services/
#systemd #fw
Etherarp
Built-in Firewall for Systemd Services
Systemd includes a feature to restrict which IP addresses can communicate with a service. As an example, let's use this to SSH to the 192.168.1.0/24 subnet
systemd-resolved: introduction to split DNS - Fedora Magazine
https://fedoramagazine.org/systemd-resolved-introduction-to-split-dns/
#dns #systemd
https://fedoramagazine.org/systemd-resolved-introduction-to-split-dns/
#dns #systemd
Fedora Magazine
systemd-resolved: introduction to split DNS - Fedora Magazine
systemd-resolved brings support for split DNS to Fedora 33. Learn how this works and how to configure your DNS clients.
Old but good
#systemd
systemd for Administrators
- I. Verifying Bootup
- II. Which Service Owns Which Processes?
- III. How Do I Convert A SysV Init Script Into A systemd Service File?
- IV. Killing Services
- V. The Three Levels of "Off"
- VI. Changing Roots
- VII. The Blame Game
- VIII. The New Configuration Files
- IX. On /etc/sysconfig and /etc/default
- X. Instantiated Services
- XI. Converting inetd Services
- XII. Securing Your Services
- XIII. Log and Service Status
- XIV. The Self-Explanatory Boot
- XV. Watchdogs
- XVI. Gettys on Serial Consoles (and Elsewhere)
- XVII. Using the Journal
- XVIII. Managing Resources
- XIX. Detecting Virtualization
- XX. Socket Activated Internet Services and OS Containers
#systemd
systemd for Administrators
- I. Verifying Bootup
- II. Which Service Owns Which Processes?
- III. How Do I Convert A SysV Init Script Into A systemd Service File?
- IV. Killing Services
- V. The Three Levels of "Off"
- VI. Changing Roots
- VII. The Blame Game
- VIII. The New Configuration Files
- IX. On /etc/sysconfig and /etc/default
- X. Instantiated Services
- XI. Converting inetd Services
- XII. Securing Your Services
- XIII. Log and Service Status
- XIV. The Self-Explanatory Boot
- XV. Watchdogs
- XVI. Gettys on Serial Consoles (and Elsewhere)
- XVII. Using the Journal
- XVIII. Managing Resources
- XIX. Detecting Virtualization
- XX. Socket Activated Internet Services and OS Containers
0pointer.de
systemd for Administrators, Part 1
Posts and writings by Lennart Poettering
Forwarded from Записки админа
🐧 Интересный ресурс, на котором можно изучить работу systemd и попрактиковаться с разными вариантами запуска https://systemd-by-example.com #systemd #линк