You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
This commit was created on GitHub.com and signed with GitHub’s verified signature.
feat: limit /etc to readonly (#1451)
* feat: limit /etc to readonly
https://www.freedesktop.org/software/systemd/man/latest/systemd.exec.html#ReadWritePaths=
Prevent postgres, or child-process of, from writing to /etc
* bump version numbers
* chore: add test for read-only mount
* start / stop postgresql.service when doing osquery permission checks
* chore: version suffix for local infra tests
* chore: bump versions
---------
Co-authored-by: Sam Rose <[email protected]>
