summaryrefslogtreecommitdiffstats
diff options
context:
space:
mode:
Diffstat
-rw-r--r--debian/haveged.service5
1 files changed, 3 insertions, 2 deletions
diff --git a/debian/haveged.service b/debian/haveged.service
index 3ab94b0..4425c10 100644
--- a/debian/haveged.service
+++ b/debian/haveged.service
@@ -26,8 +26,9 @@ RestrictRealtime=true
LockPersonality=true
MemoryDenyWriteExecute=true
SystemCallArchitectures=native
-SystemCallFilter=@basic-io @file-system @io-event @network-io @signal
-SystemCallFilter=arch_prctl brk ioctl mprotect sysinfo
+SystemCallFilter=@system-service
+SystemCallFilter=~@mount
+SystemCallErrorNumber=EPERM
[Install]
WantedBy=sysinit.target
generated by cgit v1.2.3 (git 2.39.1) at 2025-01-18 08:52:52 +0100