From 604db902e95602efd49949ed670edbe5454e0753 Mon Sep 17 00:00:00 2001 From: Guanran Wang Date: Wed, 2 Oct 2024 03:55:42 +0800 Subject: [PATCH] Fix systemd service (#275) This format is not recognized by systemd. As shown in the following log: /etc/systemd/system/redlib.service:33: System call ~@privileged is not known, ignoring. /etc/systemd/system/redlib.service:33: System call ~@resources is not known, ignoring. --- contrib/redlib.service | 3 ++- 1 file changed, 2 insertions(+), 1 deletion(-) diff --git a/contrib/redlib.service b/contrib/redlib.service index c43ef49..e483460 100644 --- a/contrib/redlib.service +++ b/contrib/redlib.service @@ -30,7 +30,8 @@ RestrictNamespaces=yes RestrictRealtime=yes RestrictSUIDSGID=yes SystemCallArchitectures=native -SystemCallFilter=@system-service ~@privileged ~@resources +SystemCallFilter=@system-service +SystemCallFilter=~@privileged @resources UMask=0077 [Install]