Re: [Health-dev] Minor improvements for HMIS node & Thalamus packages?

health-dev

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Health-dev] Minor improvements for HMIS node & Thalamus packages?

From:	Axel Braun
Subject:	Re: [Health-dev] Minor improvements for HMIS node & Thalamus packages?
Date:	Wed, 20 Oct 2021 20:22:29 +0200

Hi Gerald,

Am Mittwoch, 20. Oktober 2021, 15:16:18 CEST schrieb Gerald Wiese:
> 1) Logging in the systemd service regarding both the wikibooks documentation
> and the shipped script when downloading from
> https://ftp.gnu.org/gnu/health/
>
> The line
>
> "ExecStart=/home/gnuhealth/start_gnuhealth.sh"
>
> could be changed into
>
> "ExecStart=/home/gnuhealth/start_gnuhealth.sh --logconf
> /home/gnuhealth/gnuhealth/tryton/server/config/gnuhealth_log.conf"

In the context of systemd, maybe you should consider the security settings
that the openSUSE security team proposed:
[Service]
PrivateTmp=true
ProtectSystem=true
ProtectHome=true
ProtectKernelModules=true
ProtectKernelTunables=true
ProtectControlGroups=true
MountFlags=private
NoNewPrivileges=true
PrivateDevices=true
ProtectHostname=true
ProtectClock=true
ProtectKernelLogs=true
RestrictRealtime=true
MemoryDenyWriteExecute=true

Cheers
Axel

[Prev in Thread]

Current Thread

[Next in Thread]

[Health-dev] Minor improvements for HMIS node & Thalamus packages?, Gerald Wiese, 2021/10/20
- Re: [Health-dev] Minor improvements for HMIS node & Thalamus packages?, Axel Braun <=

Prev by Date: [Health-dev] Minor improvements for HMIS node & Thalamus packages?
Next by Date: Re: [Health-dev] icd 10 in GH 3.8.0 demo database
Previous by thread: [Health-dev] Minor improvements for HMIS node & Thalamus packages?
Next by thread: [Health-dev] [bug #60033] Email notification for mailing list not working
Index(es):
- Date
- Thread