Linux

6090 readers

443 users here now

A community for everything relating to the GNU/Linux operating system

Also check out:

Original icon base courtesy of lewing@isc.tamu.edu and The GIMP

founded 2 years ago

MODERATORS

Ategon@programming.dev

anzo@programming.dev

dwraf_of_ignorance@programming.dev

[Solved] systemd: BindReadOnlyPaths alternative allowing user to read it (programming.dev)

submitted 3 weeks ago* (last edited 2 weeks ago) by onlinepersona@programming.dev to c/linux@programming.dev

3 comments fedilink hide all child comments

I've inherited a systemd service and it uses BindReadOnlyPaths to make certain paths available to the service (doc)

A bind mount makes a particular file or directory available at an additional place in the unit's view of the file system. Any bind mounts created with this option are specific to the unit, and are not visible in the host's mount table.

The service is running using a specific user and I would like the user to access those read-only paths outside of the service. Is there an possibility within systemd that would allow me to do that?

Edit: solved it with a systemd bind mount

top 3 comments

sorted by: hot top controversial new old

[–] nesc@lemmy.cafe 1 points 3 weeks ago (1 children)

What do you meam by outside of service, but within systemd?

[–] onlinepersona@programming.dev 1 points 3 weeks ago (1 children)

As in the solution should use systemd i.e no "just sudo mount --bind -o ro /src /dst bro". Then when I sudo -u $serviceUser cat $mountPath, it should output the contents of the file instead of just nothing.

Anti Commercial-AI license

[–] nesc@lemmy.cafe 1 points 3 weeks ago* (last edited 3 weeks ago)

Well just create another service with mounted paths and run shell script inside it or use systemd run --property ...?