unified names

1 files changed, 43 insertions, 0 deletions

diff --git a/easyepg-lite-git.service b/easyepg-lite-git.service
new file mode 100644
index 000000000000..8b6bc7771c91
--- /dev/null
+++ b/easyepg-lite-git.service
@@ -0,0 +1,43 @@
+[Unit]
+Description = XMLTV grabber tool using Gracenote's TMS API
+After=network.target
+
+[Service]
+ExecStart = /usr/bin/easyepg-lite-git
+User = easyepg-lite-git
+WorkingDirectory = %S/easyepg-lite-git
+StateDirectory = easyepg-lite-git
+StateDirectoryMode = 0700
+
+DynamicUser = yes
+CapabilityBoundingSet =
+RestrictAddressFamilies = AF_INET6 AF_INET
+RestrictNamespaces = yes
+NoNewPrivileges = yes
+PrivateDevices = yes
+PrivateMounts = yes
+PrivateTmp = yes
+PrivateUsers = yes
+ProtectClock = yes
+ProtectControlGroups = yes
+ProtectHome = yes
+ProtectKernelLogs = yes
+ProtectKernelModules = yes
+ProtectKernelTunables = yes
+ProtectProc = invisible
+ProtectSystem = strict
+RestrictSUIDSGID = yes
+SystemCallArchitectures = native
+SystemCallFilter = @system-service
+SystemCallFilter=~@privileged
+SystemCallFilter=~@resources
+RestrictRealtime = yes
+LockPersonality = yes
+MemoryDenyWriteExecute = yes
+RemoveIPC = yes
+UMask = 077
+ProtectHostname = yes
+ProcSubset = pid
+
+[Install]
+WantedBy=multi-user.target