summaryrefslogtreecommitdiffstats
path: root/system/systemd/netdata.service.in
diff options
context:
space:
mode:
Diffstat (limited to 'system/systemd/netdata.service.in')
-rw-r--r--system/systemd/netdata.service.in5
1 files changed, 3 insertions, 2 deletions
diff --git a/system/systemd/netdata.service.in b/system/systemd/netdata.service.in
index 25d95b2b8..afdac114c 100644
--- a/system/systemd/netdata.service.in
+++ b/system/systemd/netdata.service.in
@@ -7,8 +7,7 @@ After=network.target httpd.service squid.service nfs-server.service mysqld.servi
[Service]
Type=simple
-User=@netdata_user_POST@
-Group=netdata
+User=root
RuntimeDirectory=netdata
RuntimeDirectoryMode=0775
PIDFile=/run/netdata/netdata.pid
@@ -60,6 +59,8 @@ CapabilityBoundingSet=CAP_SYS_CHROOT
CapabilityBoundingSet=CAP_NET_ADMIN
# is required for plugins that use sudo
CapabilityBoundingSet=CAP_SETGID CAP_SETUID
+# is required to change file ownership
+CapabilityBoundingSet=CAP_CHOWN
# Sandboxing
ProtectSystem=full
generated by cgit v1.2.3 (git 2.39.1) at 2024-07-03 10:53:44 +0000