From a9c67892af9cd16620e0dc0b44d3d7c97ad13cd2 Mon Sep 17 00:00:00 2001
From: Michal Hlavinka <mhlavink@redhat.com>
Date: Tue, 9 Aug 2016 10:19:05 +0200
Subject: [PATCH] add note to dovecot unit file about ProtectSystem option

---
 dovecot-2.2.22-systemd_w_protectsystem.patch | 3 ++-
 1 file changed, 2 insertions(+), 1 deletion(-)

diff --git a/dovecot-2.2.22-systemd_w_protectsystem.patch b/dovecot-2.2.22-systemd_w_protectsystem.patch
index bc69e10..10fe4b8 100644
--- a/dovecot-2.2.22-systemd_w_protectsystem.patch
+++ b/dovecot-2.2.22-systemd_w_protectsystem.patch
@@ -4,8 +4,9 @@ diff -up dovecot-2.2.22/dovecot.service.in.systemd_w_protectsystem dovecot-2.2.2
 @@ -33,7 +33,7 @@ ExecStop=@bindir@/doveadm stop
  PrivateTmp=true
  NonBlocking=yes
- # Enable this if your systemd is new enough to support it:
+-# Enable this if your systemd is new enough to support it:
 -#ProtectSystem=full
++# Enable this if your systemd is new enough to support it: (it will make /usr /boot /etc read only for dovecot)
 +ProtectSystem=full
  
  [Install]