Overview

File harden_motion.service.patch of Package motion

Index: motion-release-4.3.2/data/motion.service.in
===================================================================
--- motion-release-4.3.2.orig/data/motion.service.in
+++ motion-release-4.3.2/data/motion.service.in
@@ -23,6 +23,16 @@ Documentation=man:motion(1)
 After=local-fs.target network.target
 
 [Service]
+# added automatically, for details please see
+# https://en.opensuse.org/openSUSE:Security_Features#Systemd_hardening_effort
+ProtectSystem=full
+ProtectHostname=true
+ProtectKernelTunables=true
+ProtectKernelModules=true
+ProtectKernelLogs=true
+ProtectControlGroups=true
+RestrictRealtime=true
+# end of automatic additions 
 User=motion
 EnvironmentFile=-/etc/default/motion
 # The the sleep on the following line is needed with systemd version
openSUSE Build Service is sponsored by
Places