|
|
|
|
|
|
by bhaney
297 days ago
|
|
|
> this just sounds like a heck of a lot of grokking and work (and maybe even trial and error?) for the mortals, no? Absolutely. For the record, when I say "my services" I mean services that I'm writing, not any service running on my system. I consider this hardening to be part of development, to be done by the developer responsible for it, whether that's the upstream dev or package maintainer. I would not consider it to be the responsibility of a random end-user and I wouldn't recommend most to try unless they're personally interested in it. That being said, for developers, these switches make it crazy easy to sandbox your service compared to older solutions. So much so that I actually bother doing it now. |
|
|