From 1395cc86969823d9972517833c614becba8660a0 Mon Sep 17 00:00:00 2001 From: Guilhem Moulin Date: Fri, 2 Jun 2017 14:12:26 +0200 Subject: move postfix-sender-login.{service,socket} to files/. --- .../systemd/system/postfix-sender-login.service | 23 ---------------------- .../etc/systemd/system/postfix-sender-login.socket | 8 -------- .../systemd/system/postfix-sender-login.service | 23 ++++++++++++++++++++++ .../etc/systemd/system/postfix-sender-login.socket | 8 ++++++++ 4 files changed, 31 insertions(+), 31 deletions(-) delete mode 100644 roles/MSA/etc/systemd/system/postfix-sender-login.service delete mode 100644 roles/MSA/etc/systemd/system/postfix-sender-login.socket create mode 100644 roles/MSA/files/etc/systemd/system/postfix-sender-login.service create mode 100644 roles/MSA/files/etc/systemd/system/postfix-sender-login.socket diff --git a/roles/MSA/etc/systemd/system/postfix-sender-login.service b/roles/MSA/etc/systemd/system/postfix-sender-login.service deleted file mode 100644 index 3ceb310..0000000 --- a/roles/MSA/etc/systemd/system/postfix-sender-login.service +++ /dev/null @@ -1,23 +0,0 @@ -[Unit] -Description=Postfix sender login socketmap -After=mail-transport-agent.target -Requires=postfix-sender-login.socket - -[Service] -User=postfix -Group=postfix -StandardInput=null -SyslogFacility=mail -ExecStart=/usr/local/bin/postfix-sender-login.pl - -# Hardening -NoNewPrivileges=yes -PrivateDevices=yes -ProtectHome=yes -ProtectSystem=full -ReadOnlyDirectories=/ -RestrictAddressFamilies=AF_UNIX - -[Install] -WantedBy=multi-user.target -Also=postfix-sender-login.socket diff --git a/roles/MSA/etc/systemd/system/postfix-sender-login.socket b/roles/MSA/etc/systemd/system/postfix-sender-login.socket deleted file mode 100644 index c883dc1..0000000 --- a/roles/MSA/etc/systemd/system/postfix-sender-login.socket +++ /dev/null @@ -1,8 +0,0 @@ -[Socket] -SocketUser=postfix -SocketGroup=postfix -SocketMode=0666 -ListenStream=/var/spool/postfix-msa/private/sender-login - -[Install] -WantedBy=sockets.target diff --git a/roles/MSA/files/etc/systemd/system/postfix-sender-login.service b/roles/MSA/files/etc/systemd/system/postfix-sender-login.service new file mode 100644 index 0000000..3ceb310 --- /dev/null +++ b/roles/MSA/files/etc/systemd/system/postfix-sender-login.service @@ -0,0 +1,23 @@ +[Unit] +Description=Postfix sender login socketmap +After=mail-transport-agent.target +Requires=postfix-sender-login.socket + +[Service] +User=postfix +Group=postfix +StandardInput=null +SyslogFacility=mail +ExecStart=/usr/local/bin/postfix-sender-login.pl + +# Hardening +NoNewPrivileges=yes +PrivateDevices=yes +ProtectHome=yes +ProtectSystem=full +ReadOnlyDirectories=/ +RestrictAddressFamilies=AF_UNIX + +[Install] +WantedBy=multi-user.target +Also=postfix-sender-login.socket diff --git a/roles/MSA/files/etc/systemd/system/postfix-sender-login.socket b/roles/MSA/files/etc/systemd/system/postfix-sender-login.socket new file mode 100644 index 0000000..e8d99b5 --- /dev/null +++ b/roles/MSA/files/etc/systemd/system/postfix-sender-login.socket @@ -0,0 +1,8 @@ +[Socket] +SocketUser=postfix +SocketGroup=postfix +SocketMode=0600 +ListenStream=/var/spool/postfix-msa/private/sender-login + +[Install] +WantedBy=sockets.target -- cgit v1.2.3