diff --git a/mosquitto.changes b/mosquitto.changes
index 0b70264..567b722 100644
--- a/mosquitto.changes
+++ b/mosquitto.changes
@@ -1,3 +1,9 @@
+-------------------------------------------------------------------
+Wed Oct  6 14:18:36 UTC 2021 - Johannes Segitz <jsegitz@suse.com>
+
+- Added hardening to systemd service(s) (bsc#1181400). Modified:
+  * mosquitto.service
+
 -------------------------------------------------------------------
 Wed Jun  9 19:10:49 UTC 2021 - Martin Hauke <mardnh@gmx.de>
 
diff --git a/mosquitto.service b/mosquitto.service
index 573d326..859253b 100644
--- a/mosquitto.service
+++ b/mosquitto.service
@@ -3,6 +3,19 @@ Description=Mosquitto MQTT v3.1/v3.1.1 Broker
 Documentation=man:mosquitto.conf(5) man:mosquitto(8)
 
 [Service]
+# added automatically, for details please see
+# https://en.opensuse.org/openSUSE:Security_Features#Systemd_hardening_effort
+ProtectSystem=full
+ProtectHome=true
+PrivateDevices=true
+ProtectHostname=true
+ProtectClock=true
+ProtectKernelTunables=true
+ProtectKernelModules=true
+ProtectKernelLogs=true
+ProtectControlGroups=true
+RestrictRealtime=true
+# end of automatic additions 
 Type=simple
 User=mosquitto
 Group=mosquitto