mirror of
https://github.com/abraunegg/onedrive
synced 2024-04-27 19:52:52 +02:00
39a0048445
* systemd: use PrivateUsers= in user unit ProtectSystem= and other sandboxing options require a user namespace in order to work as user units (the user manager does not run as root and thus without a user namespace it is unable to perform mounts).
27 lines
681 B
SYSTEMD
27 lines
681 B
SYSTEMD
[Unit]
|
|
Description=OneDrive Free Client
|
|
Documentation=https://github.com/abraunegg/onedrive
|
|
After=network-online.target
|
|
Wants=network-online.target
|
|
|
|
[Service]
|
|
# Commented out hardenings are disabled because they may not work out of the box on your distribution
|
|
# If you know what you are doing please try to enable them.
|
|
|
|
ProtectSystem=full
|
|
PrivateUsers=true
|
|
#PrivateDevices=true
|
|
ProtectHostname=true
|
|
#ProtectClock=true
|
|
ProtectKernelTunables=true
|
|
#ProtectKernelModules=true
|
|
#ProtectKernelLogs=true
|
|
ProtectControlGroups=true
|
|
RestrictRealtime=true
|
|
ExecStart=@prefix@/bin/onedrive --monitor
|
|
Restart=on-failure
|
|
RestartSec=3
|
|
RestartPreventExitStatus=3
|
|
|
|
[Install]
|
|
WantedBy=default.target |