Home Explore Help
Sign In
sengler
/
tor-parallel-relay-conn
1
0
Fork 0
Files Issues 0 Pull Requests 0 Wiki
Browse Source

Merge remote-tracking branch 'candrews/issue13805'

Nick Mathewson 10 years ago
parent
e009c2da51 5bdf12ca8a
commit
c98e075ebc
1 changed files with 6 additions and 6 deletions
Split View Show Diff Stats
  1. 6 6
      contrib/dist/tor.service.in

+ 6 - 6
contrib/dist/tor.service.in
View File 

@@ -16,13 +16,13 @@ LimitNOFILE = 32768
 
 
 # Hardening
 
 PrivateTmp = yes
 
-DeviceAllow = /dev/null rw
 
-DeviceAllow = /dev/urandom r
 
-InaccessibleDirectories = /home
 
+PrivateDevices = yes
 
+ProtectHome = yes
 
+ProtectSystem = full
 
 ReadOnlyDirectories = /
 
-ReadWriteDirectories = @LOCALSTATEDIR@/lib/tor
 
-ReadWriteDirectories = @LOCALSTATEDIR@/log/tor
 
-ReadWriteDirectories = @LOCALSTATEDIR@/run/tor
 
+ReadWriteDirectories = -@LOCALSTATEDIR@/lib/tor
 
+ReadWriteDirectories = -@LOCALSTATEDIR@/log/tor
 
+ReadWriteDirectories = -@LOCALSTATEDIR@/run/tor
 
 NoNewPrivileges = yes
 
 
 [Install]