Debian
haveged package

haveged 1.9.8-3 source package in Debian

Changelog

haveged (1.9.8-3) unstable; urgency=medium

  * debian/haveged.service
    + Sync with upstream's version
      - Service ordering changes
        - Start after systemd-tmpfiles-setup-dev.service
          This is required, otherwise /dev/random might not yet exist.
        - Start before systemd-journald
        - Set WantedBy=sysinit.target (rather than multi-user.target)
      - Drop `NoNewPrivileges` (useless, as haveged keeps running as root)
      - Update SuccessExitStatus
      - Always restart the service
      - Allow running haveged in containers
      - Normalise on Boolean “true” instead of “yes”

    + Tighten-down security settings
      - Apply a syscall filter to the service
      - Set ProtectHostname, ProtectKernel{Logs,Modules}
      - Set Restrict{Namespaces,Realtime}, preventing access to
        potentially-vulnerable kernel features.
      - Set LockPersonality, MemoryDenyWriteExecute


  * Declare compliance with policy v4.5.0.
    No change required.

  * Remove obsolete debian/source/include-binaries

 -- Nicolas Braud-Santoni <email address hidden>  Fri, 31 Jan 2020 05:16:40 +0100

Upload details

Uploaded by:
Jeremy Bobbio
Uploaded to:
Sid
Original maintainer:
Jeremy Bobbio
Architectures:
linux-any
Section:
misc
Urgency:
Medium Urgency

See full publishing history Publishing

Series Pocket Published Component Section

Builds

Downloads

File Size SHA-256 Checksum
haveged_1.9.8-3.dsc 2.1 KiB 7bcd3f0031db218a77517ee069b9412b8ae90ad071b528915a5be8b532bd5b3f
haveged_1.9.8.orig.tar.gz 482.9 KiB 99aa1996c6e39ea2459cfc37addfb8b1eecc63f3a2b6da9db17b22e76b6851ae
haveged_1.9.8-3.debian.tar.xz 10.5 KiB 7df3a249548eedfc23d1c4701daba8ea1d0cf86ecb8219f0013528bc409ce733

No changes file available.

Binary packages built by this source