From 454e9cdef4e3764e6c47ecaf5169da6f6fbe6e7d Mon Sep 17 00:00:00 2001 From: Archi Date: Sat, 9 Oct 2021 00:23:51 +0200 Subject: [PATCH] Correct ReadWritePaths for systemd service /tmp/ASF does not exist by default which will cause this rule to fail, we can limit ourselves to /tmp instead --- ArchiSteamFarm/overlay/generic-netf/ArchiSteamFarm@.service | 2 +- ArchiSteamFarm/overlay/generic/ArchiSteamFarm@.service | 2 +- ArchiSteamFarm/overlay/linux/ArchiSteamFarm@.service | 2 +- 3 files changed, 3 insertions(+), 3 deletions(-) diff --git a/ArchiSteamFarm/overlay/generic-netf/ArchiSteamFarm@.service b/ArchiSteamFarm/overlay/generic-netf/ArchiSteamFarm@.service index 5e63af18f..ba632d04d 100644 --- a/ArchiSteamFarm/overlay/generic-netf/ArchiSteamFarm@.service +++ b/ArchiSteamFarm/overlay/generic-netf/ArchiSteamFarm@.service @@ -22,7 +22,7 @@ ProtectKernelLogs=yes ProtectKernelModules=yes ProtectKernelTunables=yes ProtectSystem=full -ReadWritePaths=/home/%i/ArchiSteamFarm /tmp/ASF +ReadWritePaths=/home/%i/ArchiSteamFarm /tmp RemoveIPC=yes RestrictAddressFamilies=AF_INET AF_INET6 RestrictNamespaces=yes diff --git a/ArchiSteamFarm/overlay/generic/ArchiSteamFarm@.service b/ArchiSteamFarm/overlay/generic/ArchiSteamFarm@.service index 30663f804..da9457fa0 100644 --- a/ArchiSteamFarm/overlay/generic/ArchiSteamFarm@.service +++ b/ArchiSteamFarm/overlay/generic/ArchiSteamFarm@.service @@ -22,7 +22,7 @@ ProtectKernelLogs=yes ProtectKernelModules=yes ProtectKernelTunables=yes ProtectSystem=full -ReadWritePaths=/home/%i/ArchiSteamFarm /tmp/ASF +ReadWritePaths=/home/%i/ArchiSteamFarm /tmp RemoveIPC=yes RestrictAddressFamilies=AF_INET AF_INET6 RestrictNamespaces=yes diff --git a/ArchiSteamFarm/overlay/linux/ArchiSteamFarm@.service b/ArchiSteamFarm/overlay/linux/ArchiSteamFarm@.service index 6267d1223..6863c72c7 100644 --- a/ArchiSteamFarm/overlay/linux/ArchiSteamFarm@.service +++ b/ArchiSteamFarm/overlay/linux/ArchiSteamFarm@.service @@ -22,7 +22,7 @@ ProtectKernelLogs=yes ProtectKernelModules=yes ProtectKernelTunables=yes ProtectSystem=full -ReadWritePaths=/home/%i/ArchiSteamFarm /tmp/ASF +ReadWritePaths=/home/%i/ArchiSteamFarm /tmp RemoveIPC=yes RestrictAddressFamilies=AF_INET AF_INET6 RestrictNamespaces=yes