msfjarvis/server-config
1
Fork 0
mirror of https://github.com/msfjarvis/server-config synced 2025-08-14 17:37:02 +05:30
Code Issues Projects Releases Packages Wiki Activity Actions
server-config/mirror-bot.service
Harsh Shandilya 3a6e204a00
mirror-bot: Move to unprivileged user 
Signed-off-by: Harsh Shandilya <msfjarvis@gmail.com>
2019-07-18 13:00:22 +05:30

27 lines
791 B
Desktop File
Raw Blame History

[Unit]
Description=aria2 mirror Telegram bot service
After=network.target
[Service]
Restart=on-abort
Type=simple
User=bot
WorkingDirectory=/home/bot/aria-telegram-mirror-bot
ExecStartPre=/usr/bin/env bash aria.sh
ExecStart=/usr/bin/npm start
ExecReload=/bin/kill -USR1 $MAINPID
; Use graceful shutdown with a reasonable timeout
KillMode=mixed
KillSignal=SIGQUIT
TimeoutStopSec=5s
; Use private /tmp and /var/tmp, which are discarded after the process stops.
PrivateTmp=true
; Use a minimal /dev (May bring additional security if switched to 'true', but it may not work on Raspberry Pi's or other devices, so it has been disabled in this dist.)
PrivateDevices=true
; Make /usr, /boot, /etc and possibly some more folders read-only.
ProtectSystem=full
[Install]
WantedBy=multi-user.target
Reference in a new issue View git blame Copy permalink