File harden_opendkim.service.patch of Package opendkim

Index: OpenDKIM-2.11.0-Beta2/contrib/systemd/opendkim.service.in
===================================================================
--- OpenDKIM-2.11.0-Beta2.orig/contrib/systemd/opendkim.service.in
+++ OpenDKIM-2.11.0-Beta2/contrib/systemd/opendkim.service.in
@@ -8,6 +8,19 @@ Documentation=man:opendkim(8) man:opendk
 After=network.target nss-lookup.target syslog.target
 
 [Service]
+# added automatically, for details please see
+# https://en.opensuse.org/openSUSE:Security_Features#Systemd_hardening_effort
+ProtectSystem=full
+ProtectHome=true
+PrivateDevices=true
+ProtectHostname=true
+ProtectClock=true
+ProtectKernelTunables=true
+ProtectKernelModules=true
+ProtectKernelLogs=true
+ProtectControlGroups=true
+RestrictRealtime=true
+# end of automatic additions 
 Type=forking
 PIDFile=@localstatedir@/run/opendkim/opendkim.pid
 EnvironmentFile=-@sysconfdir@/sysconfig/opendkim

Places

File harden_opendkim.service.patch of Package opendkim

Places