Antonio Teixeira
89c67f3f0c
- Update to version 2.8.2 For more see NEWS.adoc and UPGRADING.adoc in /usr/share/doc/packages/nut (the list of changes is too long to list). OBS-URL: https://build.opensuse.org/request/show/1165878 OBS-URL: https://build.opensuse.org/package/show/hardware/nut?expand=0&rev=111
22 lines
888 B
Diff
22 lines
888 B
Diff
diff -purN a/scripts/systemd/nut-server.service.in b/scripts/systemd/nut-server.service.in
|
|
--- a/scripts/systemd/nut-server.service.in 2023-10-07 16:06:44.000000000 +0200
|
|
+++ b/scripts/systemd/nut-server.service.in 2023-11-03 19:49:51.496940092 +0100
|
|
@@ -26,6 +26,17 @@ Before=nut-monitor.service
|
|
PartOf=nut.target
|
|
|
|
[Service]
|
|
+# added automatically, for details please see
|
|
+# https://en.opensuse.org/openSUSE:Security_Features#Systemd_hardening_effort
|
|
+ProtectSystem=full
|
|
+ProtectHome=true
|
|
+ProtectHostname=true
|
|
+ProtectKernelTunables=true
|
|
+ProtectKernelModules=true
|
|
+ProtectKernelLogs=true
|
|
+ProtectControlGroups=true
|
|
+RestrictRealtime=true
|
|
+# end of automatic additions
|
|
# A busy server can be monitoring a lot of devices as well as replying
|
|
# to many clients. The "infinity" definition is actually capped by OS
|
|
# settings and hardcoded defaults; typically can be 65535+ nowadays.
|