Overview

File harden_nut-driver.service.patch of Package nut

Index: b/scripts/systemd/nut-driver@.service.in
===================================================================
--- a/scripts/systemd/nut-driver@.service.in
+++ b/scripts/systemd/nut-driver@.service.in
@@ -53,6 +53,17 @@ Documentation=@NUT_WEBSITE_BASE@/docs/ma
 # Finally note that "nut-driver-enumerator.service" should take care of this.
 
 [Service]
+# added automatically, for details please see
+# https://en.opensuse.org/openSUSE:Security_Features#Systemd_hardening_effort
+ProtectSystem=full
+ProtectHome=true
+ProtectHostname=true
+ProtectKernelTunables=true
+ProtectKernelModules=true
+ProtectKernelLogs=true
+ProtectControlGroups=true
+RestrictRealtime=true
+# end of automatic additions 
 Environment=NUT_IGNORE_NOWAIT=true
 Environment=NUT_QUIET_INIT_NDE_WARNING=true
 EnvironmentFile=-@CONFPATH@/nut.conf
openSUSE Build Service is sponsored by
Places