security: Drop PrivateUsers=yes from all service files

Signed-off-by: James Valleroy <jvalleroy@mailbox.org> Reviewed-by: Sunil Mohan Adapa <sunil@medhas.org>
2026-05-20 10:34:30 +00:00 · 2020-02-04 18:07:52 -05:00 · 2020-02-04 18:07:52 -05:00 · abdcbd3f65
commit abdcbd3f65
parent e5c80e8af3
5 changed files with 0 additions and 5 deletions
--- a/actions/deluge
+++ b/actions/deluge
@ -58,7 +58,6 @@ LockPersonality=yes
 NoNewPrivileges=yes
 PrivateDevices=yes
 PrivateTmp=yes
 PrivateUsers=yes
 ProtectControlGroups=yes
 ProtectKernelLogs=yes
 ProtectKernelModules=yes
--- a/actions/infinoted
+++ b/actions/infinoted
@ -101,7 +101,6 @@ NoNewPrivileges=yes
 PrivateDevices=yes
 PrivateMounts=yes
 PrivateTmp=yes
 PrivateUsers=yes
 ProtectControlGroups=yes
 ProtectHome=yes
 ProtectKernelLogs=yes
--- a/plinth/modules/mldonkey/data/lib/systemd/system/mldonkey-server.service.d/freedombox.conf
+++ b/plinth/modules/mldonkey/data/lib/systemd/system/mldonkey-server.service.d/freedombox.conf
@ -16,7 +16,6 @@ NoNewPrivileges=yes
 PrivateDevices=yes
 PrivateMounts=yes
 PrivateTmp=yes
 PrivateUsers=yes
 ProtectControlGroups=yes
 ProtectHome=yes
 ProtectKernelLogs=yes
--- a/plinth/modules/storage/data/lib/systemd/system/freedombox-udiskie.service
+++ b/plinth/modules/storage/data/lib/systemd/system/freedombox-udiskie.service
@ -23,7 +23,6 @@ Documentation=man:udiskie(1)
 ExecStart=/usr/bin/udiskie
 LockPersonality=yes
 PrivateTmp=yes
 PrivateUsers=yes
 ProtectControlGroups=yes
 ProtectHome=yes
 ProtectKernelLogs=yes
--- a/plinth/modules/upgrades/data/lib/systemd/system/freedombox-setup-repositories.service
+++ b/plinth/modules/upgrades/data/lib/systemd/system/freedombox-setup-repositories.service
@ -24,7 +24,6 @@ Type=oneshot
 LockPersonality=yes
 PrivateDevices=yes
 PrivateTmp=yes
 PrivateUsers=yes
 ProtectControlGroups=yes
 ProtectKernelLogs=yes
 ProtectKernelModules=yes