Djam/dhcp
1
0
Fork 0
mirror of https://abf.rosa.ru/djam/dhcp.git synced 2025-02-23 13:32:48 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions

add CapabilityBoundingSet=~CAP_SYS_ADMIN

Browse source
This commit is contained in:
Mikhail Novosyolov 2018-10-08 14:55:47 +03:00
parent 0234b5510d
commit 43716ab4e0
1 changed files with 1 additions and 0 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

1
dhcpd.service
View file

@ -13,6 +13,7 @@ ExecStart=/usr/sbin/dhcpd -pf /run/dhcpd/dhcpd.pid -cf $CONFIGFILE -lf $LEASEFIL
PIDFile=/run/dhcpd/dhcpd.pid PIDFile=/run/dhcpd/dhcpd.pid
User=isc-dhcpd User=isc-dhcpd
AmbientCapabilities=CAP_NET_BIND_SERVICE CAP_NET_RAW AmbientCapabilities=CAP_NET_BIND_SERVICE CAP_NET_RAW
CapabilityBoundingSet=~CAP_SYS_ADMIN
ProtectSystem=full ProtectSystem=full
ProtectHome=true ProtectHome=true
KillSignal=SIGINT KillSignal=SIGINT