units/systemd-journal-remote.service.in

   1 #  This file is part of systemd.
   2 #
   3 #  systemd is free software; you can redistribute it and/or modify it
   4 #  under the terms of the GNU Lesser General Public License as published by
   5 #  the Free Software Foundation; either version 2.1 of the License, or
   6 #  (at your option) any later version.
   7
   8 [Unit]
   9 Description=Journal Remote Sink Service
  10 Documentation=man:systemd-journal-remote(8) man:journal-remote.conf(5)
  11 Requires=systemd-journal-remote.socket
  12
  13 [Service]
  14 ExecStart=@rootlibexecdir@/systemd-journal-remote --listen-https=-3 --output=/var/log/journal/remote/
  15 User=systemd-journal-remote
  16 Group=systemd-journal-remote
  17 WatchdogSec=3min
  18 PrivateTmp=yes
  19 PrivateDevices=yes
  20 PrivateNetwork=yes
  21 ProtectSystem=full
  22 ProtectHome=yes
  23 ProtectControlGroups=yes
  24 ProtectKernelTunables=yes
  25 MemoryDenyWriteExecute=yes
  26 RestrictRealtime=yes
  27 RestrictAddressFamilies=AF_UNIX AF_INET AF_INET6
  28 SystemCallArchitectures=native
  29
  30 [Install]
  31 Also=systemd-journal-remote.socket