mirror of
https://github.com/GrapheneOS/matrix.grapheneos.org.git
synced 2024-12-21 21:55:23 -05:00
9 lines
177 B
Plaintext
9 lines
177 B
Plaintext
|
[Service]
|
||
|
|
# use a persistent user so that nftables can use it for skuid rules
|
||
|
|
DynamicUser=false
|
||
|
|
|
||
|
|
MemoryDenyWriteExecute=true
|
||
|
|
RemoveIPC=true
|
||
|
|
ProcSubset=pid
|
||
|
|
ProtectProc=invisible
|