mirror of
https://github.com/GrapheneOS/matrix.grapheneos.org.git
synced 2024-09-27 14:55:36 +00:00
9 lines
177 B
Plaintext
9 lines
177 B
Plaintext
[Service]
|
|
# use a persistent user so that nftables can use it for skuid rules
|
|
DynamicUser=false
|
|
|
|
MemoryDenyWriteExecute=true
|
|
RemoveIPC=true
|
|
ProcSubset=pid
|
|
ProtectProc=invisible
|