projects / mirror / dsa-puppet.git / blobdiff
? search:
summary | shortlog | log | commit | commitdiff | tree
raw | inline | side by side
Add systemd backed rsync service
[mirror/dsa-puppet.git] / modules / rsync / templates / systemd-rsyncd.service.erb
diff --git a/modules/rsync/templates/systemd-rsyncd.service.erb b/modules/rsync/templates/systemd-rsyncd.service.erb
new file mode 100644 (file)
index 0000000..7a5b828
--- /dev/null
+++ b/modules/rsync/templates/systemd-rsyncd.service.erb
@@ -0,0 +1,12 @@
+[Unit]
+Description=rsync daemon <%= @name %>
+
+[Service]
+ExecStart=-/usr/bin/rsync --daemon --config=<%= @fname_real_rsync %>
+StandardInput=socket
+StandardError=journal
+CapabilityBoundingSet=CAP_SYS_CHROOT CAP_SETUID CAP_SETGID
+PrivateDevices=true
+PrivateNetwork=true
+ProtectHome=true
+ProtectSystem=full
Unnamed repository; edit this file 'description' to name the repository.