diff options
Diffstat (limited to 'postgresql.service')
| -rw-r--r-- | postgresql.service | 8 |
1 files changed, 8 insertions, 0 deletions
diff --git a/postgresql.service b/postgresql.service index 3981058622dd..dcef95a9c103 100644 --- a/postgresql.service +++ b/postgresql.service @@ -30,6 +30,14 @@ PrivateTmp=true ProtectHome=true ProtectSystem=full NoNewPrivileges=true +ProtectControlGroups=true +ProtectKernelModules=true +ProtectKernelTunables=true +PrivateDevices=true +RestrictAddressFamilies=AF_UNIX AF_INET AF_INET6 +RestrictNamespaces=true +RestrictRealtime=true +SystemCallArchitectures=native [Install] WantedBy=multi-user.target |