Sweetbread/Alfis
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Fixed systemd capabilities for alfis user.

Browse Source
This commit is contained in:
Revertron
2021-04-03 21:34:07 +02:00
parent 1bf76c9d81
commit 80a05318e6
1 changed files with 6 additions and 1 deletions
Download Patch File Download Diff File Expand all files Collapse all files
contrib/systemd/alfis.service
+6 -1
View File
@@ -8,10 +8,15 @@ After=alfis-default-config.service
[Service]
User=alfis
Group=alfis
ProtectHome=true
ProtectSystem=true
SecureBits=keep-caps
CapabilityBoundingSet=CAP_NET_BIND_SERVICE
AmbientCapabilities=CAP_NET_BIND_SERVICE
SyslogIdentifier=alfis
CapabilityBoundingSet=CAP_NET_ADMIN CAP_NET_BIND_SERVICE
WorkingDirectory=/var/lib/alfis
ExecStart=/usr/bin/alfis -n -c /etc/alfis.conf
ExecReload=/bin/kill -HUP $MAINPID