projects
/
mirror
/
dsa-puppet.git
/ blobdiff
commit
grep
author
committer
pickaxe
?
search:
re
summary
|
shortlog
|
log
|
commit
|
commitdiff
|
tree
raw
|
inline
| side by side
enable ubc autofs for hier.d.o
[mirror/dsa-puppet.git]
/
modules
/
rsync
/
templates
/
systemd-rsyncd.service.erb
diff --git
a/modules/rsync/templates/systemd-rsyncd.service.erb
b/modules/rsync/templates/systemd-rsyncd.service.erb
index
2a21d65
..
5ecc685
100644
(file)
--- a/
modules/rsync/templates/systemd-rsyncd.service.erb
+++ b/
modules/rsync/templates/systemd-rsyncd.service.erb
@@
-5,7
+5,7
@@
Description=rsync daemon <%= @name %>
ExecStart=-/usr/bin/rsync --daemon --config=<%= @fname_real_rsync %>
StandardInput=socket
StandardError=journal
ExecStart=-/usr/bin/rsync --daemon --config=<%= @fname_real_rsync %>
StandardInput=socket
StandardError=journal
-CapabilityBoundingSet=CAP_SYS_CHROOT CAP_SETUID CAP_SETGID
+CapabilityBoundingSet=CAP_SYS_CHROOT CAP_SETUID CAP_SETGID
CAP_DAC_READ_SEARCH
PrivateDevices=true
PrivateNetwork=true
ProtectHome=read-only
PrivateDevices=true
PrivateNetwork=true
ProtectHome=read-only