summaryrefslogtreecommitdiff
path: root/units/systemd-networkd.service.m4.in
diff options
context:
space:
mode:
Diffstat (limited to 'units/systemd-networkd.service.m4.in')
-rw-r--r--units/systemd-networkd.service.m4.in1
1 files changed, 1 insertions, 0 deletions
diff --git a/units/systemd-networkd.service.m4.in b/units/systemd-networkd.service.m4.in
index 153ddeb323..d33deb97b6 100644
--- a/units/systemd-networkd.service.m4.in
+++ b/units/systemd-networkd.service.m4.in
@@ -31,6 +31,7 @@ CapabilityBoundingSet=CAP_NET_ADMIN CAP_NET_BIND_SERVICE CAP_NET_BROADCAST CAP_N
ProtectSystem=strict
ProtectHome=yes
ProtectControlGroups=yes
+ProtectKernelModules=yes
MemoryDenyWriteExecute=yes
RestrictRealtime=yes
RestrictAddressFamilies=AF_UNIX AF_NETLINK AF_INET AF_INET6 AF_PACKET
generated by cgit v1.2.3-54-g00ecf (git 2.45.2) at 2024-10-17 01:10:48 +0000