revamp falco from source package

author: brokenpip3 2024-04-28 23:34:08 +0200
committer: brokenpip3 2024-04-28 23:34:08 +0200
commit: 94499f1c33d6a2293dd48cd1c7df01e1b37e39cb (patch)
tree: 6c1c93a437e27df3f23716f50ffd7e0e12a67bea /falco-modern-bpf.service
parent: 12902b41da824d66bf11811d5cfd1f850b9b65c9 (diff)
download: aur-94499f1c33d6a2293dd48cd1c7df01e1b37e39cb.tar.gz
1 files changed, 25 insertions, 0 deletions
diff --git a/falco-modern-bpf.service b/falco-modern-bpf.service
new file mode 100644
index 000000000000..493085eda408
--- /dev/null
+++ b/falco-modern-bpf.service
@@ -0,0 +1,25 @@
+[Unit]
+Description=Falco: Cloud Native Runtime Security
+Documentation=https://falco.org/docs/
+
+[Service]
+Type=simple
+User=root
+ExecStart=/usr/bin/falco -o engine.kind=modern_ebpf
+ExecReload=kill -1 $MAINPID
+UMask=0077
+TimeoutSec=30
+RestartSec=15s
+Restart=on-failure
+PrivateTmp=true
+NoNewPrivileges=yes
+ProtectHome=read-only
+ProtectSystem=full
+ProtectKernelTunables=true
+RestrictRealtime=true
+RestrictAddressFamilies=~AF_PACKET
+StandardOutput=null
+
+[Install]
+WantedBy=multi-user.target
+Alias=falco.service
author	brokenpip3	2024-04-28 23:34:08 +0200
committer	brokenpip3	2024-04-28 23:34:08 +0200
commit	94499f1c33d6a2293dd48cd1c7df01e1b37e39cb (patch)
tree	6c1c93a437e27df3f23716f50ffd7e0e12a67bea /falco-modern-bpf.service
parent	12902b41da824d66bf11811d5cfd1f850b9b65c9 (diff)
download	aur-94499f1c33d6a2293dd48cd1c7df01e1b37e39cb.tar.gz