Git-Mirrors/graphene-os-server-infrastructure
1
0
Fork 0
mirror of https://github.com/GrapheneOS/infrastructure.git synced 2025-01-08 21:37:51 -05:00
Code Issues Packages Projects Releases Wiki Activity
e40fb1bd4e
graphene-os-server-infrastr.../systemd/system/chronyd.service.d/override.conf
Daniel Micay e40fb1bd4e add chronyd.service hardening based on not using sendmail 
This reverts the extra directives included in the standard
chronyd.service for supporting sendmail.
2024-12-19 11:35:51 -05:00

10 lines
198 B
Plaintext
Raw Blame History

[Service]
NoNewPrivileges=yes
ReadWritePaths=
ReadWritePaths=/run /var/lib/chrony -/var/log
Restart=always
RestartMaxDelaySec=10s
RestartSec=100ms
RestartSteps=5
RestrictAddressFamilies=~AF_NETLINK
Reference in New Issue View Git Blame Copy Permalink