3c19d0b46b
Basically, we turn it on for most long-running services, with the exception of machined (whose child processes need to join containers here and there), and importd (which sandboxes tar in a CLONE_NEWNET namespace). machined is left unrestricted, and importd is restricted to use only "net"
38 lines
1.3 KiB
SYSTEMD
38 lines
1.3 KiB
SYSTEMD
# This file is part of systemd.
|
|
#
|
|
# systemd is free software; you can redistribute it and/or modify it
|
|
# under the terms of the GNU Lesser General Public License as published by
|
|
# the Free Software Foundation; either version 2.1 of the License, or
|
|
# (at your option) any later version.
|
|
|
|
[Unit]
|
|
Description=Login Service
|
|
Documentation=man:systemd-logind.service(8) man:logind.conf(5)
|
|
Documentation=http://www.freedesktop.org/wiki/Software/systemd/logind
|
|
Documentation=http://www.freedesktop.org/wiki/Software/systemd/multiseat
|
|
Wants=user.slice
|
|
After=nss-user-lookup.target user.slice
|
|
|
|
# Ask for the dbus socket. If running over kdbus, the socket will
|
|
# not be actually used.
|
|
Wants=dbus.socket
|
|
After=dbus.socket
|
|
|
|
[Service]
|
|
ExecStart=@rootlibexecdir@/systemd-logind
|
|
Restart=always
|
|
RestartSec=0
|
|
BusName=org.freedesktop.login1
|
|
WatchdogSec=3min
|
|
CapabilityBoundingSet=CAP_SYS_ADMIN CAP_MAC_ADMIN CAP_AUDIT_CONTROL CAP_CHOWN CAP_KILL CAP_DAC_READ_SEARCH CAP_DAC_OVERRIDE CAP_FOWNER CAP_SYS_TTY_CONFIG
|
|
MemoryDenyWriteExecute=yes
|
|
RestrictRealtime=yes
|
|
RestrictNamespaces=yes
|
|
RestrictAddressFamilies=AF_UNIX AF_NETLINK AF_INET AF_INET6
|
|
SystemCallFilter=~@clock @cpu-emulation @debug @keyring @module @obsolete @raw-io
|
|
SystemCallArchitectures=native
|
|
|
|
# Increase the default a bit in order to allow many simultaneous
|
|
# logins since we keep one fd open per session.
|
|
LimitNOFILE=16384
|