mirror of
https://github.com/FAUSheppy/no-secrets-athq-ansible
synced 2025-12-10 07:58:34 +01:00
30 lines
518 B
Desktop File
30 lines
518 B
Desktop File
[Unit]
|
|
Description=Slapd Custom Service
|
|
|
|
[Service]
|
|
|
|
Type=forking
|
|
ExecStart=/usr/sbin/slapd -f /etc/ldap/slapd.conf -h "ldap:///"
|
|
|
|
User=openldap
|
|
Group=openldap
|
|
|
|
CapabilityBoundingSet=CAP_NET_BIND_SERVICE
|
|
AmbientCapabilities=CAP_NET_BIND_SERVICE
|
|
|
|
Restart=on-failure
|
|
|
|
PrivateTmp=yes
|
|
ProtectSystem=full
|
|
ProtectHome=yes
|
|
ProtectKernelModules=yes
|
|
ProtectKernelTunables=yes
|
|
ProtectControlGroups=yes
|
|
NoNewPrivileges=yes
|
|
MountFlags=private
|
|
SystemCallArchitectures=native
|
|
PrivateDevices=yes
|
|
|
|
[Install]
|
|
WantedBy=multi-user.target
|