mirror of
https://github.com/GrapheneOS/matrix.grapheneos.org.git
synced 2024-10-01 04:45:34 -04:00
9 lines
177 B
Plaintext
9 lines
177 B
Plaintext
[Service]
|
|
# use a persistent user so that nftables can use it for skuid rules
|
|
DynamicUser=false
|
|
|
|
MemoryDenyWriteExecute=true
|
|
RemoveIPC=true
|
|
ProcSubset=pid
|
|
ProtectProc=invisible
|