PrivateDevices=yes
PrivateNetwork=yes
PrivateTmp=yes
+ProtectProc=invisible
+ProtectClock=yes
ProtectControlGroups=yes
ProtectHome=yes
ProtectHostname=yes
+ProtectKernelLogs=yes
ProtectKernelModules=yes
ProtectKernelTunables=yes
-ProtectKernelLogs=yes
ProtectSystem=strict
RestrictAddressFamilies=AF_UNIX AF_INET AF_INET6
RestrictNamespaces=yes