On Thu, Jan 12, 2023 at 03:28:00PM +0100, Wonko Pfux wrote:
Hi,
after I updated this morning my tinc vpn setup stopped working.
Journal: ... Jan 12 15:19:15 muckefuck tincd[23111]: tincd 1.0.36 starting, debug level 0 Jan 12 15:19:15 muckefuck tincd[23111]: Could not open /dev/net/tun: No such file or directory Jan 12 15:19:15 muckefuck tincd[23111]: Terminating ...
After poking around a bit I found that the tinc.service file sets PrivateDevices=true as part of the Systemd hardening effort (bsc#1181400)
If I set it to false tinc can access /dev/net/tun. Why is this failing only now? The tinc Package was last changed a year ago.
No it was not. Just after sending I figured that the "Changed" column in OBS does not reflect accepted requsts. https://build.opensuse.org/request/show/1056357 was in fact changed 6 Days ago. And is the culprit.
Is it safe to set PrivateDevices=false or is there another way?
cheers Wonko