<div dir="ltr"><div class="gmail_extra"><div class="gmail_quote">2018-01-15 19:11 GMT+01:00 Reindl Harald <span dir="ltr"><<a href="mailto:h.reindl@thelounge.net" target="_blank">h.reindl@thelounge.net</a>></span>:<br><blockquote class="gmail_quote" style="margin:0px 0px 0px 0.8ex;border-left:1px solid rgb(204,204,204);padding-left:1ex"><span class="gmail-"><br></span>ReadOnlyDirectories=/etc<br>
ReadOnlyDirectories=/usr<br></blockquote><div><br></div><div>FYI, you can use ProtectSystem=strict to have more strict rules for the root filesystem:</div><div><a href="https://www.freedesktop.org/software/systemd/man/systemd.exec.html#ProtectSystem=">https://www.freedesktop.org/software/systemd/man/systemd.exec.html#ProtectSystem=</a><br></div></div></div></div>