machined: run machined at minimal capabilities
This commit is contained in:
Lennart Poettering
parent
085b90af43
commit
bc5cb1d525
|
|
@ -17,3 +17,4 @@ ExecStart=@rootlibexecdir@/systemd-machined
|
|||
Restart=always
|
||||
RestartSec=0
|
||||
BusName=org.freedesktop.machine1
|
||||
CapabilityBoundingSet=CAP_KILL
|
||||
|
|
|
|||
Loading…
Reference in New Issue