mirrors/gentoo-ebuilds
3
0
Fork 0
mirror of https://anongit.gentoo.org/git/repo/gentoo.git synced 2025-12-17 23:48:20 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions
gentoo-ebuilds/net-misc/sslh/files/sslh.service
Craig Andrews 2069b41a2c
 net-misc/sslh: fix systemd service installation 
https://bugs.gentoo.org/932015
Signed-off-by: Craig Andrews <candrews@gentoo.org>
2024-05-17 15:27:26 -04:00

28 lines
661 B
Desktop File
Raw Permalink Blame History

# /etc/systemd/system/sslh.service
[Unit]
Description=SSL/SSH multiplexer (fork mode) for %I
After=network.target
[Service]
EnvironmentFile=/etc/conf.d/sslh
ExecStart=/usr/sbin/sslh -f $DAEMON_OPTS
KillMode=process
#Hardening
PrivateTmp=true
CapabilityBoundingSet=CAP_NET_BIND_SERVICE
AmbientCapabilities=CAP_NET_BIND_SERVICE
SecureBits=noroot-locked
ProtectSystem=strict
ProtectHome=true
ProtectKernelModules=true
ProtectKernelTunables=true
ProtectControlGroups=true
MountFlags=private
NoNewPrivileges=true
PrivateDevices=true
RestrictAddressFamilies=AF_INET AF_INET6 AF_UNIX
MemoryDenyWriteExecute=true
DynamicUser=true
[Install]
WantedBy=multi-user.target
Reference in a new issue View git blame Copy permalink