File tree 2 files changed +5
-9
lines changed
2 files changed +5
-9
lines changed Original file line number Diff line number Diff line change @@ -6,19 +6,12 @@ After=network.target
66Type =simple
77User =derper
88Group =derper
9- ExecStart =/usr/bin/derper
9+ ExecStart =/usr/bin/derper -c /etc/derper/derper.conf
1010Restart =on-failure
1111RestartSec =5
1212LimitNOFILE =1048576
1313
1414# Hardening measures
15- PrivateTmp =yes
16- ProtectSystem =full
17- NoNewPrivileges =yes
18- ProtectHome =yes
19- ProtectKernelTunables =yes
20- ProtectKernelModules =yes
21- ProtectControlGroups =yes
2215AmbientCapabilities =CAP_NET_BIND_SERVICE
2316CapabilityBoundingSet =CAP_NET_BIND_SERVICE
2417
Original file line number Diff line number Diff line change 22getent group xdpderper > /dev/null || groupadd -r xdpderper
33getent passwd xdpderper > /dev/null || useradd -r -g xdpderper -s /bin/bash -c " XDPDERP server"
44getent group derper > /dev/null || groupadd -r derper
5- getent passwd derper > /dev/null || useradd -r -g derper -s /bin/bash -c " DERP server"
5+ getent passwd derper > /dev/null || useradd -r -g derper -s /bin/bash -c " DERP server"
6+
7+ mkdir /etc/derper
8+ chown -R derper:derper /etc/derper
You can’t perform that action at this time.
0 commit comments