upgpkg: lyrebird-proxy 0.2.0-1

author: fossdd 2024-04-06 00:00:14 +0000
committer: fossdd 2024-04-06 00:00:14 +0000
commit: 0cc811b973663689237934420e01fccad177e670 (patch)
tree: a83572a17667b89165cd6cd0ef5688cfbfaf10ff /lyrebird-proxy.service
download: aur-0cc811b973663689237934420e01fccad177e670.tar.gz
1 files changed, 33 insertions, 0 deletions
diff --git a/lyrebird-proxy.service b/lyrebird-proxy.service
new file mode 100644
index 000000000000..bfd6f59c7341
--- /dev/null
+++ b/lyrebird-proxy.service
@@ -0,0 +1,33 @@
+[Unit]
+Description=pluggable transport proxy for Tor, implementing obfs4
+After=network.target nss-lookup.target
+
+[Service]
+ExecStart=/usr/bin/lyrebird-proxy
+
+Restart=on-failure
+
+# Hardening
+DynamicUser=true
+NoNewPrivileges=true
+
+PrivateTmp=true
+PrivateDevices=true
+PrivateMounts=true
+PrivateIPC=true
+
+ProtectHome=true
+ProtectControlGroups=true
+ProtectKernelModules=true
+ProtectKernelTunables=true
+ProtectKernelLogs=true
+ProtectProc=invisible
+ProtectHostname=true
+ProtectClock=true
+ProtectSystem=strict
+
+MemoryDenyWriteExecute=true
+RestrictRealtime=true
+
+[Install]
+WantedBy=multi-user.target
author	fossdd	2024-04-06 00:00:14 +0000
committer	fossdd	2024-04-06 00:00:14 +0000
commit	0cc811b973663689237934420e01fccad177e670 (patch)
tree	a83572a17667b89165cd6cd0ef5688cfbfaf10ff /lyrebird-proxy.service
download	aur-0cc811b973663689237934420e01fccad177e670.tar.gz