Hardened systemd unit file
Resolves: rhbz#1350941
This commit is contained in:
Jaroslav Škarvada
parent
ba9868160e
commit
d4589e6527
@ -7,6 +7,10 @@ Conflicts=sendmail.service exim.service
|
|||||||
Type=forking
|
Type=forking
|
||||||
PIDFile=/var/spool/postfix/pid/master.pid
|
PIDFile=/var/spool/postfix/pid/master.pid
|
||||||
EnvironmentFile=-/etc/sysconfig/network
|
EnvironmentFile=-/etc/sysconfig/network
|
||||||
|
PrivateTmp=true
|
||||||
|
CapabilityBoundingSet=~ CAP_NET_ADMIN CAP_SYS_ADMIN CAP_SYS_BOOT CAP_SYS_MODULE
|
||||||
|
ProtectSystem=true
|
||||||
|
PrivateDevices=true
|
||||||
ExecStartPre=-/usr/libexec/postfix/aliasesdb
|
ExecStartPre=-/usr/libexec/postfix/aliasesdb
|
||||||
ExecStartPre=-/usr/libexec/postfix/chroot-update
|
ExecStartPre=-/usr/libexec/postfix/chroot-update
|
||||||
ExecStart=/usr/sbin/postfix start
|
ExecStart=/usr/sbin/postfix start
|
||||||
|
|||||||
@ -42,7 +42,7 @@
|
|||||||
Name: postfix
|
Name: postfix
|
||||||
Summary: Postfix Mail Transport Agent
|
Summary: Postfix Mail Transport Agent
|
||||||
Version: 3.1.1
|
Version: 3.1.1
|
||||||
Release: 1%{?dist}
|
Release: 2%{?dist}
|
||||||
Epoch: 2
|
Epoch: 2
|
||||||
Group: System Environment/Daemons
|
Group: System Environment/Daemons
|
||||||
URL: http://www.postfix.org
|
URL: http://www.postfix.org
|
||||||
@ -732,6 +732,10 @@ rm -rf $RPM_BUILD_ROOT
|
|||||||
%endif
|
%endif
|
||||||
|
|
||||||
%changelog
|
%changelog
|
||||||
|
* Wed Jun 29 2016 Jaroslav Škarvada <jskarvad@redhat.com> - 2:3.1.1-2
|
||||||
|
- Hardened systemd unit file
|
||||||
|
Resolves: rhbz#1350941
|
||||||
|
|
||||||
* Mon May 16 2016 Jaroslav Škarvada <jskarvad@redhat.com> - 2:3.1.1-1
|
* Mon May 16 2016 Jaroslav Škarvada <jskarvad@redhat.com> - 2:3.1.1-1
|
||||||
- New version
|
- New version
|
||||||
Resolves: rhbz#1336245
|
Resolves: rhbz#1336245
|
||||||
|
|||||||
Loading…
Reference in New Issue
Block a user