danwin1210/hosting
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

Update php systemd service files

Browse Source
This commit is contained in:
Daniel Winzen
2020-01-11 13:33:34 +01:00
parent 5abb32402d
commit e9c4b798d5
7 changed files with 9 additions and 10 deletions
Download Patch File Download Diff File Expand all files Collapse all files

3
etc/systemd/system/php7.2-fpm@.service
View File

@ -14,8 +14,7 @@ LimitNOFILE=100000
TimeoutStartSec=300 TimeoutStartSec=300
ProtectSystem=strict ProtectSystem=strict
PrivateTmp=true PrivateTmp=true
# sendmail requires it... enable once chrooted NoNewPrivileges=true
#NoNewPrivileges=true
PrivateDevices=true PrivateDevices=true
ProtectKernelTunables=true ProtectKernelTunables=true
ProtectKernelModules=true ProtectKernelModules=true

3
etc/systemd/system/php7.2-fpm@default.service
View File

@ -14,7 +14,7 @@ LimitNOFILE=100000
TimeoutStartSec=300 TimeoutStartSec=300
ProtectSystem=strict ProtectSystem=strict
PrivateTmp=true PrivateTmp=true
# sendmail requires it... enable once chrooted # sendmail requires it...
#NoNewPrivileges=true #NoNewPrivileges=true
PrivateDevices=true PrivateDevices=true
ProtectKernelTunables=true ProtectKernelTunables=true
@ -27,6 +27,7 @@ ReadWritePaths=-/var/run/
ReadWritePaths=-/run/ ReadWritePaths=-/run/
ReadWritePaths=-/var/local/squirrelmail/ ReadWritePaths=-/var/local/squirrelmail/
ReadWritePaths=-/var/www/ ReadWritePaths=-/var/www/
ReadWritePaths=-/var/spool/postfix/
InaccessiblePaths=-/root/ InaccessiblePaths=-/root/
CPUQuota=100% CPUQuota=100%
MemoryHigh=25% MemoryHigh=25%

1
etc/systemd/system/php7.3-fpm.service
View File

@ -11,7 +11,6 @@ Type=oneshot
RemainAfterExit=yes RemainAfterExit=yes
ExecStart=/bin/true ExecStart=/bin/true
ExecReload=/bin/true ExecReload=/bin/true
RuntimeDirectoryPreserve=yes
[Install] [Install]
WantedBy=multi-user.target WantedBy=multi-user.target

3
etc/systemd/system/php7.3-fpm@.service
View File

@ -14,8 +14,7 @@ LimitNOFILE=100000
TimeoutStartSec=300 TimeoutStartSec=300
ProtectSystem=strict ProtectSystem=strict
PrivateTmp=true PrivateTmp=true
# sendmail requires it... enable once chrooted NoNewPrivileges=true
#NoNewPrivileges=true
PrivateDevices=true PrivateDevices=true
ProtectKernelTunables=true ProtectKernelTunables=true
ProtectKernelModules=true ProtectKernelModules=true

3
etc/systemd/system/php7.3-fpm@default.service
View File

@ -14,7 +14,7 @@ LimitNOFILE=100000
TimeoutStartSec=300 TimeoutStartSec=300
ProtectSystem=strict ProtectSystem=strict
PrivateTmp=true PrivateTmp=true
# sendmail requires it... enable once chrooted # sendmail requires it...
#NoNewPrivileges=true #NoNewPrivileges=true
PrivateDevices=true PrivateDevices=true
ProtectKernelTunables=true ProtectKernelTunables=true
@ -27,6 +27,7 @@ ReadWritePaths=-/var/run/
ReadWritePaths=-/run/ ReadWritePaths=-/run/
ReadWritePaths=-/var/local/squirrelmail/ ReadWritePaths=-/var/local/squirrelmail/
ReadWritePaths=-/var/www/ ReadWritePaths=-/var/www/
ReadWritePaths=-/var/spool/postfix/
InaccessiblePaths=-/root/ InaccessiblePaths=-/root/
CPUQuota=100% CPUQuota=100%
MemoryHigh=25% MemoryHigh=25%

3
etc/systemd/system/php7.4-fpm@.service
View File

@ -14,8 +14,7 @@ LimitNOFILE=100000
TimeoutStartSec=300 TimeoutStartSec=300
ProtectSystem=strict ProtectSystem=strict
PrivateTmp=true PrivateTmp=true
# sendmail requires it... enable once chrooted NoNewPrivileges=true
#NoNewPrivileges=true
PrivateDevices=true PrivateDevices=true
ProtectKernelTunables=true ProtectKernelTunables=true
ProtectKernelModules=true ProtectKernelModules=true

3
etc/systemd/system/php7.4-fpm@default.service
View File

@ -14,7 +14,7 @@ LimitNOFILE=100000
TimeoutStartSec=300 TimeoutStartSec=300
ProtectSystem=strict ProtectSystem=strict
PrivateTmp=true PrivateTmp=true
# sendmail requires it... enable once chrooted # sendmail requires it...
#NoNewPrivileges=true #NoNewPrivileges=true
PrivateDevices=true PrivateDevices=true
ProtectKernelTunables=true ProtectKernelTunables=true
@ -27,6 +27,7 @@ ReadWritePaths=-/var/run/
ReadWritePaths=-/run/ ReadWritePaths=-/run/
ReadWritePaths=-/var/local/squirrelmail/ ReadWritePaths=-/var/local/squirrelmail/
ReadWritePaths=-/var/www/ ReadWritePaths=-/var/www/
ReadWritePaths=-/var/spool/postfix/
InaccessiblePaths=-/root/ InaccessiblePaths=-/root/
CPUQuota=100% CPUQuota=100%
MemoryHigh=25% MemoryHigh=25%