diff options
| author | Markus Heiser <markus.heiser@darmarit.de> | 2020-01-08 19:21:07 +0100 |
|---|---|---|
| committer | Markus Heiser <markus.heiser@darmarit.de> | 2020-01-08 19:21:07 +0100 |
| commit | 4139c63d23a1f4cc427eb428bcff0594c395c1c5 (patch) | |
| tree | 6f5f0165244194f17acb85914d5ae80e3fdd798e /utils/templates/lib/systemd/system/filtron.service | |
| parent | 28dacee28819ea2d24fd8ff6547fd3a175677084 (diff) | |
utils/filtron.sh: add script to install filtron middleware
Signed-off-by: Markus Heiser <markus.heiser@darmarit.de>
Diffstat (limited to 'utils/templates/lib/systemd/system/filtron.service')
| -rw-r--r-- | utils/templates/lib/systemd/system/filtron.service | 29 |
1 files changed, 29 insertions, 0 deletions
diff --git a/utils/templates/lib/systemd/system/filtron.service b/utils/templates/lib/systemd/system/filtron.service new file mode 100644 index 000000000..fdb67731a --- /dev/null +++ b/utils/templates/lib/systemd/system/filtron.service @@ -0,0 +1,29 @@ +[Unit] + +Description=${SERVICE_NAME} +After=syslog.target +After=network.target + +[Service] + +Type=simple +User=${SERVICE_USER} +Group=${SERVICE_GROUP} +WorkingDirectory=${SERVICE_HOME} +ExecStart=${SERVICE_HOME}/go-apps/bin/filtron -rules ${FILTRON_RULES} + +Restart=always +Environment=USER=${SERVICE_USER} HOME=${SERVICE_HOME} + +# Some distributions may not support these hardening directives. If you cannot +# start the service due to an unknown option, comment out the ones not supported +# by your version of systemd. + +ProtectSystem=full +PrivateDevices=yes +PrivateTmp=yes +NoNewPrivileges=true + +[Install] + +WantedBy=multi-user.target |