summaryrefslogtreecommitdiff
path: root/pcr/i2p/i2prouter.service
diff options
context:
space:
mode:
Diffstat (limited to 'pcr/i2p/i2prouter.service')
-rw-r--r--pcr/i2p/i2prouter.service23
1 files changed, 23 insertions, 0 deletions
diff --git a/pcr/i2p/i2prouter.service b/pcr/i2p/i2prouter.service
index 7c278c833..2ac9c2304 100644
--- a/pcr/i2p/i2prouter.service
+++ b/pcr/i2p/i2prouter.service
@@ -14,6 +14,29 @@ SendSIGKILL=no
ExecReload=/bin/kill -USR1 $MAINPID
ExecStop=/bin/kill -TERM $MAINPID
SuccessExitStatus=0 2 3
+PrivateTmp=yes
+PrivateDevices=yes
+ReadOnlyDirectories=/etc
+ReadOnlyDirectories=/usr
+ReadOnlyDirectories=/var/lib
+InaccessibleDirectories=-/root
+InaccessibleDirectories=-/media
+InaccessibleDirectories=-/boot
+InaccessibleDirectories=-/home
+InaccessibleDirectories=-/run/console
+InaccessibleDirectories=-/run/dbus
+InaccessibleDirectories=-/run/lock
+InaccessibleDirectories=-/run/mount
+InaccessibleDirectories=-/run/systemd/generator
+InaccessibleDirectories=-/run/systemd/system
+InaccessibleDirectories=-/run/systemd/users
+InaccessibleDirectories=-/run/udev
+InaccessibleDirectories=-/run/user
+InaccessibleDirectories=-/var/lib/dbus
+InaccessibleDirectories=-/var/lib/rpm
+InaccessibleDirectories=-/var/lib/systemd
+InaccessibleDirectories=-/var/lib/yum
+InaccessibleDirectories=-/var/spool
[Install]
WantedBy=multi-user.target
generated by cgit v1.2.2 (git 2.25.0) at 2024-05-11 23:37:36 +0000