From 0c09b361df0b28662b157bb685544d0654ff7dc5 Mon Sep 17 00:00:00 2001 From: =?UTF-8?q?Josu=C3=A9=20Tille?= Date: Fri, 27 May 2022 20:56:40 +0200 Subject: [PATCH] Fix systemd unit --- conf/coturn-synapse.service | 1 - conf/matrix-synapse.service | 2 +- 2 files changed, 1 insertion(+), 2 deletions(-) diff --git a/conf/coturn-synapse.service b/conf/coturn-synapse.service index 38ac8a5..ebbf25c 100644 --- a/conf/coturn-synapse.service +++ b/conf/coturn-synapse.service @@ -30,7 +30,6 @@ UMask=0007 NoNewPrivileges=yes PrivateTmp=yes PrivateDevices=yes -RestrictAddressFamilies=AF_UNIX AF_INET AF_INET6 RestrictNamespaces=yes RestrictRealtime=yes DevicePolicy=closed diff --git a/conf/matrix-synapse.service b/conf/matrix-synapse.service index 8d199e7..bc68929 100644 --- a/conf/matrix-synapse.service +++ b/conf/matrix-synapse.service @@ -6,12 +6,12 @@ After=network.target Type=simple User=matrix-__APP__ WorkingDirectory=/opt/yunohost/matrix-__APP__ +BindPaths=/etc/matrix-__APP__ EnvironmentFile=/etc/default/matrix-__APP__ ExecStartPre=/opt/yunohost/matrix-__APP__/bin/python -m synapse.app.homeserver --config-path=/etc/matrix-__APP__/homeserver.yaml --config-path=/etc/matrix-__APP__/conf.d/ --generate-keys ExecStart=/opt/yunohost/matrix-__APP__/bin/python -m synapse.app.homeserver --config-path=/etc/matrix-__APP__/homeserver.yaml --config-path=/etc/matrix-__APP__/conf.d/ Restart=always RestartSec=3 -RuntimeDirectory=%i # Sandboxing options to harden security # Depending on specificities of your service/app, you may need to tweak these