Skip to content

Commit

Permalink
allow permissions openat mkdir
Browse files Browse the repository at this point in the history 
since required in Qubes Debian templates
  • Loading branch information
Patrick Schleizer committed Jul 1, 2019
1 parent f26ad14 commit 3c176ce
Showing 1 changed file with 1 addition and 1 deletion.
2 changes: 1 addition & 1 deletion lib/systemd/system/proc-hidepid.service
View file
Expand Up @@ -21,7 +21,7 @@ NoNewPrivileges=true
RestrictRealtime=true
SystemCallArchitectures=native
RestrictNamespaces=true
SystemCallFilter=mount munmap access read open close stat fstat lstat mmap mprotect brk rt_sigaction rt_sigprocmask execve readlink getrlimit getuid getgid geteuid getegid statfs prctl arch_prctl set_tid_address newfstatat set_robust_list
SystemCallFilter=mount munmap access read open close stat fstat lstat mmap mprotect brk rt_sigaction rt_sigprocmask execve readlink getrlimit getuid getgid geteuid getegid statfs prctl arch_prctl set_tid_address newfstatat set_robust_list openat mkdir

[Install]
WantedBy=multi-user.target

0 comments on commit 3c176ce

Please sign in to comment.