From 51b69224c7e4bf3819dcb260f59e684c3b297cc9 Mon Sep 17 00:00:00 2001
From: uvok cheetah
Date: Sun, 9 Feb 2025 14:01:10 +0100
Subject: Update service files

restrictions
---
 roles/linux-ns/files/systemd/dn42_tinc@.service | 7 +++++--
 1 file changed, 5 insertions(+), 2 deletions(-)

(limited to 'roles/linux-ns/files/systemd/dn42_tinc@.service')

diff --git a/roles/linux-ns/files/systemd/dn42_tinc@.service b/roles/linux-ns/files/systemd/dn42_tinc@.service
index 8949467..bf17815 100644
--- a/roles/linux-ns/files/systemd/dn42_tinc@.service
+++ b/roles/linux-ns/files/systemd/dn42_tinc@.service
@@ -1,5 +1,3 @@
-# tinc inside dn42 namespace
-
 [Unit]
 Description=Tinc net %i in namespace dn42
 Documentation=info:tinc
@@ -24,5 +22,10 @@ BindReadOnlyPaths=/etc/netns/dn42/resolv.conf:/etc/resolv.conf
 ProtectSystem=strict
 RuntimeDirectory=./tinc/dn42/
 
+PrivateTmp=true
+#tun
+#PrivateDevices=true
+PrivateIPC=true
+
 #[Install]
 #WantedBy=tinc.service
-- 
cgit v1.2.3