Stowage/rest-server
2
0
Fork 0
mirror of https://github.com/restic/rest-server.git synced 2025-10-19 15:43:21 +00:00
Code Issues Projects Releases Packages Wiki Activity

Merge pull request #118 from andreaso/restrict-systemd-service

Browse source 
Make example systemd service more restrictive
This commit is contained in:
Alexander Neumann 2020-09-13 16:13:37 +02:00 committed by GitHub
commit 037fe06973
No known key found for this signature in database
GPG key ID: 4AEE18F83AFDEB23
1 changed files with 8 additions and 1 deletions
Download patch file Download diff file Expand all files Collapse all files

9
examples/systemd/rest-server.service
View file

@ -7,9 +7,16 @@ After=network.target
Type=simple Type=simple
User=www-data User=www-data
Group=www-data Group=www-data
ExecStart=/usr/local/bin/rest-server --path /tmp/restic ExecStart=/usr/local/bin/rest-server --path /path/to/backups
Restart=always Restart=always
RestartSec=5 RestartSec=5
# Optional security enhancements
NoNewPrivileges=yes
PrivateTmp=yes
ProtectSystem=strict
ProtectHome=yes
ReadWritePaths=/path/to/backups
[Install] [Install]
WantedBy=multi-user.target WantedBy=multi-user.target