add RemoveIPC=true since systemd lints for it

This isn't useful due to PrivateIPC=true but there's no harm in
including it to satisfy the security linter.
This commit is contained in:
Daniel Micay 2022-08-09 05:01:28 -04:00
parent 84cfdcfe4d
commit 28c063bdc2

View File

@ -25,6 +25,7 @@ ProtectKernelTunables=true
ProtectProc=invisible ProtectProc=invisible
ProtectSystem=strict ProtectSystem=strict
ReadWritePaths=/var/lib/mjolnir ReadWritePaths=/var/lib/mjolnir
RemoveIPC=true
Restart=on-failure Restart=on-failure
RestartSec=5s RestartSec=5s
RestrictAddressFamilies=AF_INET6 RestrictAddressFamilies=AF_INET6