diff options
author | Guilhem Moulin <guilhem@fripost.org> | 2018-12-08 01:06:06 +0100 |
---|---|---|
committer | Guilhem Moulin <guilhem@fripost.org> | 2018-12-09 20:25:39 +0100 |
commit | 6a57ea01fd48992883d6dac1b7746e79202215e4 (patch) | |
tree | f55ae891ecf05aa19511ce1493ae8631f60826bc /roles/MSA/files/etc/systemd | |
parent | bccbd0d4c0faf46e911284e599cc22da2c9b04d9 (diff) |
systemd: Replace ‘ProtectSystem=full’ with ‘ProtectSystem=strict’.
And remove ‘ReadOnlyDirectories=/’ as it's implied by ‘ProtectSystem=strict’.
Diffstat (limited to 'roles/MSA/files/etc/systemd')
-rw-r--r-- | roles/MSA/files/etc/systemd/system/postfix-sender-login.service | 3 |
1 files changed, 1 insertions, 2 deletions
diff --git a/roles/MSA/files/etc/systemd/system/postfix-sender-login.service b/roles/MSA/files/etc/systemd/system/postfix-sender-login.service index 3ceb310..09204fa 100644 --- a/roles/MSA/files/etc/systemd/system/postfix-sender-login.service +++ b/roles/MSA/files/etc/systemd/system/postfix-sender-login.service @@ -14,8 +14,7 @@ ExecStart=/usr/local/bin/postfix-sender-login.pl NoNewPrivileges=yes PrivateDevices=yes ProtectHome=yes -ProtectSystem=full -ReadOnlyDirectories=/ +ProtectSystem=strict RestrictAddressFamilies=AF_UNIX [Install] |