diff options
| author | Matthewacon | 2019-05-27 18:57:35 -0400 |
|---|---|---|
| committer | Matthewacon | 2019-05-27 18:57:35 -0400 |
| commit | 5fad9e332366ca7aa9bf5338c403830e17117b1b (patch) | |
| tree | aa0b0f0c9d61a95301e3bd377c32e401c90d57f1 /stunnel@.service | |
| download | aur-5fad9e332366ca7aa9bf5338c403830e17117b1b.tar.gz | |
Initial commit
Diffstat (limited to 'stunnel@.service')
| -rw-r--r-- | stunnel@.service | 20 |
1 files changed, 20 insertions, 0 deletions
diff --git a/stunnel@.service b/stunnel@.service new file mode 100644 index 000000000000..e0a30b8c2b25 --- /dev/null +++ b/stunnel@.service @@ -0,0 +1,20 @@ +[Unit] +Description=TLS tunnel for %I +After=syslog.target network.target + +[Service] +Type=forking +ExecStartPre=mkdir -p /run/stunnel/%I/ +ExecStartPre=mkdir -p /var/log/stunnel/%I/ +WorkingDirectory=/etc/stunnel/ +ExecStart=/usr/bin/stunnel %I.conf +PIDFile=/run/stunnel/%I/stunnel.pid +ExecStopPost=rm -rf /run/stunnel/%I/ +CapabilityBoundingSet=CAP_IPC_LOCK CAP_NET_ADMIN CAP_NET_BIND_SERVICE CAP_NET_RAW CAP_SETGID CAP_SETUID CAP_SYS_CHROOT CAP_DAC_OVERRIDE CAP_AUDIT_WRITE +ProtectSystem=true +ProtectHome=true +KillMode=processRestartSec=5s +Restart=on-failure + +[Install] +WantedBy=multi-user.target |