diff --git a/stuntman.changes b/stuntman.changes
index f886302..7a5834d 100644
--- a/stuntman.changes
+++ b/stuntman.changes
@@ -1,3 +1,9 @@
+-------------------------------------------------------------------
+Wed Nov 24 08:55:24 UTC 2021 - Johannes Segitz <jsegitz@suse.com>
+
+- Added hardening to systemd service(s) (bsc#1181400). Modified:
+  * stuntman.service
+
 -------------------------------------------------------------------
 Sun Jun 28 08:31:09 UTC 2020 - Martin Hauke <mardnh@gmx.de>
 
diff --git a/stuntman.service b/stuntman.service
index 8505c84..5469e20 100644
--- a/stuntman.service
+++ b/stuntman.service
@@ -3,6 +3,19 @@ Description=Stuntman STUN-Server
 After=network.target
 
 [Service]
+# added automatically, for details please see
+# https://en.opensuse.org/openSUSE:Security_Features#Systemd_hardening_effort
+ProtectSystem=full
+ProtectHome=true
+PrivateDevices=true
+ProtectHostname=true
+ProtectClock=true
+ProtectKernelTunables=true
+ProtectKernelModules=true
+ProtectKernelLogs=true
+ProtectControlGroups=true
+RestrictRealtime=true
+# end of automatic additions 
 Type=simple
 User=stuntman
 Group=stuntman