2024-03-10 01:53:16 +01:00
|
|
|
# /usr/lib/systemd/system/plakken.service
|
2024-03-10 01:19:19 +01:00
|
|
|
[Unit]
|
|
|
|
Description=A paste server
|
|
|
|
After=network.target
|
|
|
|
|
|
|
|
[Service]
|
|
|
|
Type=simple
|
|
|
|
User=plakken
|
|
|
|
|
|
|
|
ExecStart=/usr/bin/plakken
|
|
|
|
|
2024-03-10 01:53:16 +01:00
|
|
|
|
2024-03-10 01:19:19 +01:00
|
|
|
EnvironmentFile=/etc/plakken/env
|
|
|
|
|
|
|
|
ProtectSystem=strict
|
|
|
|
ProtectHome=true
|
2024-03-10 10:31:04 +01:00
|
|
|
NoNewPrivileges=yes
|
2024-03-10 01:19:19 +01:00
|
|
|
RestrictNamespaces=true
|
|
|
|
PrivateTmp=true
|
|
|
|
PrivateDevices=true
|
2024-03-10 01:53:16 +01:00
|
|
|
PrivateUsers=true
|
2024-03-10 01:19:19 +01:00
|
|
|
ProtectClock=true
|
|
|
|
ProtectControlGroups=true
|
|
|
|
ProtectKernelTunables=true
|
|
|
|
ProtectKernelLogs=true
|
|
|
|
ProtectKernelModules=true
|
|
|
|
LockPersonality=true
|
|
|
|
RestrictSUIDSGID=true
|
|
|
|
RemoveIPC=true
|
|
|
|
RestrictRealtime=true
|
|
|
|
SystemCallArchitectures=native
|
|
|
|
MemoryDenyWriteExecute=true
|
2024-03-10 01:53:16 +01:00
|
|
|
UMask=177
|
|
|
|
ProtectProc=invisible
|
|
|
|
CapabilityBoundingSet=
|
|
|
|
ProtectHostname=true
|
|
|
|
RestrictAddressFamilies=~AF_(INET|INET6)
|
|
|
|
RestrictAddressFamilies=~…
|
|
|
|
RestrictAddressFamilies=~AF_UNIX
|
|
|
|
RestrictAddressFamilies=~AF_NETLINK
|
|
|
|
RestrictAddressFamilies=~AF_PACKET
|
|
|
|
SystemCallFilter=~@reboot
|
|
|
|
SystemCallFilter=~@obsolete
|
|
|
|
SystemCallFilter=~@mount
|
|
|
|
SystemCallFilter=~@module
|
|
|
|
SystemCallFilter=~@debug
|
|
|
|
SystemCallFilter=~@cpu-emulation
|
|
|
|
SystemCallFilter=~@clock
|
|
|
|
SystemCallFilter=~@swap
|
|
|
|
SystemCallFilter=~@privileged
|
|
|
|
ProcSubset=pid
|
2024-03-10 01:19:19 +01:00
|
|
|
|
|
|
|
[Install]
|
2024-03-10 01:53:16 +01:00
|
|
|
WantedBy=multi-user.target
|