signal-cli-with-http-logging/signal-cli-socket.socket at af324eeca59d10a38214755d5e1349e90a5a44b3 - signal-cli-with-http-logging - Gitea: Git Fakultät Informatik TU Dortmund

marvin.weiler/signal-cli-with-http-logging

Orazio 9af3e2ca90

Set security options for the example signal-cli-socket systemd unit (#852 )

* Restrict socket access to root and users in the signal-cli group

* Sandbox signal-cli-socket service using systemd features

* Add RemoveIPC too.

* Restore original placeholder for ExecStart path.

2022-01-02 20:37:41 +01:00

14 lines

300 B

SYSTEMD

Raw Blame History

 [Unit]
 Description=Send secure messages to Signal clients
 [Socket]
 ListenStream=%t/signal-cli/socket
 SocketUser=root
 # Add yourself to the signal-cli group to talk with the service
 # Run 'usermod -aG signal-cli yourusername'
 SocketGroup=signal-cli
 SocketMode=0660
 [Install]
 WantedBy=sockets.target