Add ReadWritePaths directive to service files (#17178)
* Update mastodon-web.service * Update mastodon-streaming.service * Update mastodon-sidekiq.service
This commit is contained in:
Lerk
GitHub
1
dist/mastodon-sidekiq.service
vendored
1
dist/mastodon-sidekiq.service
vendored
@@ -47,6 +47,7 @@ SystemCallFilter=~@cpu-emulation @debug @keyring @ipc @mount @obsolete @privileg
|
|||||||
SystemCallFilter=@chown
|
SystemCallFilter=@chown
|
||||||
SystemCallFilter=pipe
|
SystemCallFilter=pipe
|
||||||
SystemCallFilter=pipe2
|
SystemCallFilter=pipe2
|
||||||
|
ReadWritePaths=/home/mastodon/live
|
||||||
|
|
||||||
[Install]
|
[Install]
|
||||||
WantedBy=multi-user.target
|
WantedBy=multi-user.target
|
||||||
|
|||||||
1
dist/mastodon-streaming.service
vendored
1
dist/mastodon-streaming.service
vendored
@@ -45,6 +45,7 @@ SystemCallArchitectures=native
|
|||||||
SystemCallFilter=~@cpu-emulation @debug @keyring @ipc @memlock @mount @obsolete @privileged @resources @setuid
|
SystemCallFilter=~@cpu-emulation @debug @keyring @ipc @memlock @mount @obsolete @privileged @resources @setuid
|
||||||
SystemCallFilter=pipe
|
SystemCallFilter=pipe
|
||||||
SystemCallFilter=pipe2
|
SystemCallFilter=pipe2
|
||||||
|
ReadWritePaths=/home/mastodon/live
|
||||||
|
|
||||||
[Install]
|
[Install]
|
||||||
WantedBy=multi-user.target
|
WantedBy=multi-user.target
|
||||||
|
|||||||
1
dist/mastodon-web.service
vendored
1
dist/mastodon-web.service
vendored
@@ -47,6 +47,7 @@ SystemCallFilter=~@cpu-emulation @debug @keyring @ipc @mount @obsolete @privileg
|
|||||||
SystemCallFilter=@chown
|
SystemCallFilter=@chown
|
||||||
SystemCallFilter=pipe
|
SystemCallFilter=pipe
|
||||||
SystemCallFilter=pipe2
|
SystemCallFilter=pipe2
|
||||||
|
ReadWritePaths=/home/mastodon/live
|
||||||
|
|
||||||
[Install]
|
[Install]
|
||||||
WantedBy=multi-user.target
|
WantedBy=multi-user.target
|
||||||
|
|||||||
Reference in New Issue
Block a user