Sweetbread/Alfis
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Merge pull request #17 from nxshock/patch-1

Browse Source 
Run service as separate user
This commit is contained in:
Revertron
2021-04-03 18:52:11 +02:00
committed by GitHub
parent ed3150cf4a ef9c2653f1
commit f6410e0934
2 changed files with 6 additions and 3 deletions
Download Patch File Download Diff File Expand all files Collapse all files
contrib/deb/generate.sh
+2
View File
@@ -72,6 +72,8 @@ EOF
cat > /tmp/$PKGNAME/debian/postinst << EOF
#!/bin/sh
id -u alfis &>/dev/null || useradd --system alfis || echo "Failed to create user 'alfis' - please create it manually and reinstall"
if ! getent group alfis 2>&1 > /dev/null; then
groupadd --system --force alfis || echo "Failed to create group 'alfis' - please create it manually and reinstall"
fi
contrib/systemd/alfis.service
+2 -1
View File
@@ -6,11 +6,12 @@ After=network.target
After=alfis-default-config.service
[Service]
User=alfis
Group=alfis
ProtectHome=true
ProtectSystem=true
SyslogIdentifier=alfis
CapabilityBoundingSet=CAP_NET_ADMIN
CapabilityBoundingSet=CAP_NET_ADMIN CAP_NET_BIND_SERVICE
WorkingDirectory=/var/lib/alfis
ExecStart=/usr/bin/alfis -n -c /etc/alfis.conf
ExecReload=/bin/kill -HUP $MAINPID