blob: da129a30e4dfda0587a96bfc76c19f58284291ed (
plain)
1
2
3
4
5
6
7
8
9
10
11
|
[Unit]
Description=Test for SystemCallFilter in system mode with User set
[Service]
ExecStart=/bin/sh -c 'echo "Foo bar"'
Type=oneshot
User=nobody
SystemCallFilter=~read write open execve ioperm
SystemCallFilter=ioctl
SystemCallFilter=read write open execve
SystemCallFilter=~ioperm
|
