From 8733a3f7207d083c77060ab597edf1018309f6f6 Mon Sep 17 00:00:00 2001
From: Vincent Bernat <vincent@bernat.im>
Date: Thu, 13 Jul 2017 08:51:13 +0200
Subject: [PATCH] daemon: enable recent systemd directive by default

This will generate a warning for some users, but that should be
sustainable.
---
 src/daemon/lldpd.service.in | 14 ++++++--------
 1 file changed, 6 insertions(+), 8 deletions(-)

diff --git a/src/daemon/lldpd.service.in b/src/daemon/lldpd.service.in
index a28261c5..fdb7338f 100644
--- a/src/daemon/lldpd.service.in
+++ b/src/daemon/lldpd.service.in
@@ -13,14 +13,12 @@ ExecStartPre=@mkdir_p@ @PRIVSEP_CHROOT@
 ExecStart=@sbindir@/lldpd $DAEMON_ARGS $LLDPD_OPTIONS
 Restart=on-failure
 PrivateTmp=yes
-# systemd >= 214
-#ProtectHome=yes
-#ProtectSystem=yes
-# systemd >= 232
-#ProtectSystem=full
-#ProtectKernelTunables=yes
-#ProtectControlGroups=yes
-#ProtectKernelModules=yes
+ProtectHome=yes
+ProtectSystem=yes
+ProtectSystem=full
+ProtectKernelTunables=yes
+ProtectControlGroups=yes
+ProtectKernelModules=yes
 
 [Install]
 WantedBy=multi-user.target
-- 
2.47.2