init.d/service.fedora: Set PrivateTmp, giving haveged its own /tmp

author: Nicolas Braud-Santoni <nicoo@debian.org> 2020-01-31 05:28:37 +0100
committer: Nicolas Braud-Santoni <nicolas@braud-santoni.eu> 2020-01-31 05:28:37 +0100
commit: 8cb8a144bbedab95ee0d0c8fb920c7e8532a47b4 (patch)
tree: bd43cae077442d1b2fa457b9e43d5fc91771c670
parent: init.d/service.fedora: Set SecureBits=noroot-locked (diff)
download: haveged-8cb8a144bbedab95ee0d0c8fb920c7e8532a47b4.tar.xz
haveged-8cb8a144bbedab95ee0d0c8fb920c7e8532a47b4.zip
1 files changed, 1 insertions, 0 deletions
diff --git a/init.d/service.fedora b/init.d/service.fedora
index 228eb36..2b1f3fc 100644
--- a/init.d/service.fedora
+++ b/init.d/service.fedora
@@ -12,6 +12,7 @@ SuccessExitStatus=137 143
 
 SecureBits=noroot-locked
 CapabilityBoundingSet=CAP_SYS_ADMIN
+PrivateTmp=true
 PrivateDevices=true
 PrivateNetwork=true
 ProtectSystem=full
author	Nicolas Braud-Santoni <nicoo@debian.org>	2020-01-31 05:28:37 +0100
committer	Nicolas Braud-Santoni <nicolas@braud-santoni.eu>	2020-01-31 05:28:37 +0100
commit	8cb8a144bbedab95ee0d0c8fb920c7e8532a47b4 (patch)
tree	bd43cae077442d1b2fa457b9e43d5fc91771c670
parent	init.d/service.fedora: Set SecureBits=noroot-locked (diff)
download	haveged-8cb8a144bbedab95ee0d0c8fb920c7e8532a47b4.tar.xz haveged-8cb8a144bbedab95ee0d0c8fb920c7e8532a47b4.zip