remove Capabilities limit: it causes failure on external commands

2018-02-18 15:38:14 +01:00 · 2018-02-18 15:38:14 +01:00 · 7f8ae95a5f
parent cbb15ae4ab
commit 7f8ae95a5f
2 changed files with 0 additions and 2 deletions
--- a/extra/systemd/pyruse-boot@.service
+++ b/extra/systemd/pyruse-boot@.service
@ -5,7 +5,6 @@ Description=Initialization of pyruse module %I
 Type=oneshot
 ExecStart=/usr/bin/pyruse-boot "%I"
 WorkingDirectory=/etc/pyruse
-CapabilityBoundingSet=CAP_SYS_CHROOT
 NoNewPrivileges=true
 PrivateDevices=yes
 PrivateTmp=yes
--- a/extra/systemd/pyruse.service
+++ b/extra/systemd/pyruse.service
@ -4,7 +4,6 @@ Description=Route systemd-journal logs to filters and actions (ban, report…)
 [Service]
 ExecStart=/usr/bin/pyruse
 WorkingDirectory=/etc/pyruse
-CapabilityBoundingSet=CAP_SYS_ADMIN CAP_SYS_CHROOT
 NoNewPrivileges=true
 PrivateDevices=yes
 PrivateTmp=yes