2016-02-28 15:00:18 +01:00
|
|
|
[Unit]
|
|
|
|
Description=Test for SystemCallFilter in system mode with User set
|
|
|
|
|
|
|
|
[Service]
|
2017-10-12 06:26:39 +02:00
|
|
|
ExecStart=/bin/sh -c 'echo "Foo bar"'
|
2016-02-28 15:00:18 +01:00
|
|
|
Type=oneshot
|
|
|
|
User=nfsnobody
|
|
|
|
SystemCallFilter=~read write open execve ioperm
|
|
|
|
SystemCallFilter=ioctl
|
|
|
|
SystemCallFilter=read write open execve
|
|
|
|
SystemCallFilter=~ioperm
|