[systemd-devel] Is ProtectHome=not working or am I doing something wrong?
Lennart Poettering
lennart at poettering.net
Mon Dec 21 05:16:44 PST 2015
On Sun, 20.12.15 17:33, Michael Biebl (mbiebl at gmail.com) wrote:
> Hi,
>
> I'm using systemd v228 and tried to lock down rsyslog a bit.
>
> For that I added
>
> # /etc/systemd/system/rsyslog.service.d/override.conf
> [Unit]
> ProtectSystem=yes
> ProtectHome=yes
> CapabilityBoundingSet=~CAP_SYS_ADMIN
None of these three settings belong in [Unit]. They belong in [Service].
Lennart
--
Lennart Poettering, Red Hat
More information about the systemd-devel
mailing list