system/systemd
system/systemd
1
0
Fork 0
mirror of https://github.com/systemd/systemd synced 2024-07-22 10:44:58 +00:00
Code Issues Actions 5 Packages Projects Releases Wiki Activity

NEWS: fix typo and reword a couple of entries

Browse source
This commit is contained in:
Luca Boccassi 2024-03-15 14:46:45 +00:00
parent db319cb460
commit df81883aa5
1 changed files with 12 additions and 8 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

20
NEWS
View file

@ -330,7 +330,11 @@ CHANGES WITH 256 in spe:
* systemd-run is now a multi-call binary. When invoked as 'uid0', it * systemd-run is now a multi-call binary. When invoked as 'uid0', it
provides as interface similar to 'sudo', with all arguments starting provides as interface similar to 'sudo', with all arguments starting
at the first non-option parameter being treated the command to at the first non-option parameter being treated the command to
invoke. invoke as root. Unlike 'sudo' and similar tools, it does not make use
of setuid binaries or other privilege escalation methods, but instead
runs the specified command as a transient unit, which is started by
the system service manager, so privileges are dropped, rather than
gained, thus implementing a much more robust and safe security model.
* systemd-run gained a new option '--ignore-failure' to suppress * systemd-run gained a new option '--ignore-failure' to suppress
command failures. command failures.
@ -396,14 +400,14 @@ CHANGES WITH 256 in spe:
* systemd-repart gained new options --generate-fstab= and * systemd-repart gained new options --generate-fstab= and
--generate-crypttab= to write the fstab and crypttab files. --generate-crypttab= to write the fstab and crypttab files.
* systemd-repart gained new option --private-key-source= to specify the * systemd-repart gained new option --private-key-source= to allow
key for as a file, or via OpenSSL's "engine" or "provider" logic. using OpenSSL's "engines" or "providers" as the signing mechanism to
Configures the signing mechanism to use when creating verity use when creating verity signature partitions.
signature partitions.
* systemd-measure gained new options --certificate=, --private-key=, * systemd-measure gained new options --certificate=, --private-key=,
and --private-key-source= to specify the signing information for as a and --private-key-source= to allow using OpenSSL's "engines" or
path or OpenSSL engine or provider. "providers" as the signing mechanism to use when creating signed
TPM2 PCR measurement values.
* systemd-tmpfiles gained a new option --dry-run to print what would be * systemd-tmpfiles gained a new option --dry-run to print what would be
done without actually taking action. done without actually taking action.
@ -449,7 +453,7 @@ CHANGES WITH 256 in spe:
additional metadata compared to ListSessions(). loginctl makes use of additional metadata compared to ListSessions(). loginctl makes use of
this to list additional fields in list-sessions. this to list additional fields in list-sessions.
* systemd-cryptenroll can now enroll directly with a public key * systemd-cryptenroll can now enroll directly with a PKCS11 public key
(instead of a certificate). (instead of a certificate).
* Core dumps are now retained for two weeks by default. * Core dumps are now retained for two weeks by default.