squeegily
/
pleroma
1
0
Fork 0
Code Issues 0 Pull Requests 0 Releases 42 Wiki Activity
Fork of Pleroma with site-specific changes and feature branches https://git.pleroma.social/pleroma/pleroma
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
3069 Commits
154 Branches
503MB
Tree: 0d1788ce44
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from '0d1788ce44'
${ noResults }
pleroma/installation/pleroma.service

27 lines
983B
Raw Blame History 

  1. [Unit]

  2. Description=Pleroma social network

  3. After=network.target postgresql.service

  4. 

  5. [Service]

  6. User=pleroma

  7. WorkingDirectory=/home/pleroma/pleroma

  8. Environment="HOME=/home/pleroma"

  9. Environment="MIX_ENV=prod"

  10. ExecStart=/usr/local/bin/mix phx.server

  11. ExecReload=/bin/kill $MAINPID

  12. KillMode=process

  13. Restart=on-failure

  14. 

  15. ; Some security directives.

  16. ; Use private /tmp and /var/tmp folders inside a new file system namespace, which are discarded after the process stops.

  17. PrivateTmp=true

  18. ; Mount /usr, /boot, and /etc as read-only for processes invoked by this service.

  19. ProtectSystem=full

  20. ; Sets up a new /dev mount for the process and only adds API pseudo devices like /dev/null, /dev/zero or /dev/random but not physical devices. Disabled by default because it may not work on devices like the Raspberry Pi.

  21. PrivateDevices=false

  22. ; Ensures that the service process and all its children can never gain new privileges through execve().

  23. NoNewPrivileges=true

  24. 

  25. [Install]

  26. WantedBy=multi-user.target