mirror of
https://github.com/msfjarvis/server-config
synced 2025-08-14 11:47:01 +05:30
32 lines
676 B
Desktop File
32 lines
676 B
Desktop File
[Unit]
|
|
Description=walls-bot-rs service
|
|
After=network.target
|
|
|
|
[Service]
|
|
Restart=on-abort
|
|
Type=simple
|
|
User=bot
|
|
WorkingDirectory=/home/bot
|
|
EnvironmentFile=/home/bot/walls-bot.config
|
|
ExecStart=/usr/bin/walls-bot-rs
|
|
ExecReload=/bin/kill -USR1 $MAINPID
|
|
ReadOnlyDirectories=/var/www/dl.msfjarvis.dev/.walls
|
|
KillMode=mixed
|
|
KillSignal=SIGQUIT
|
|
TimeoutStopSec=5s
|
|
|
|
# Security
|
|
PrivateTmp=true
|
|
ProtectSystem=full
|
|
NoNewPrivileges=true
|
|
ProtectControlGroups=true
|
|
ProtectKernelModules=true
|
|
ProtectKernelTunables=true
|
|
PrivateDevices=true
|
|
RestrictAddressFamilies=AF_INET AF_INET6
|
|
RestrictNamespaces=true
|
|
RestrictRealtime=true
|
|
SystemCallArchitectures=native
|
|
|
|
[Install]
|
|
WantedBy=multi-user.target
|