update(scripts): added a falcoctl systemd service.

Add a new dialog to choose whether to enable falcoctl feed.

Signed-off-by: Federico Di Pierro <nierro92@gmail.com>

scripts/systemd/falcoctl.service

@@ -0,0 +1,22 @@
+[Unit]
+Description=Falcoctl: Administrative tooling for Falco
+Documentation=https://github.com/falcosecurity/falcoctl
+
+[Service]
+Type=simple
+ExecStart=/usr/bin/falcoctl --follow
+UMask=0077
+TimeoutSec=30
+RestartSec=15s
+Restart=on-failure
+PrivateTmp=true
+NoNewPrivileges=yes
+ProtectHome=read-only
+ProtectSystem=full
+ProtectKernelTunables=true
+RestrictRealtime=true
+RestrictAddressFamilies=~AF_PACKET
+StandardOutput=null
+
+[Install]
+WantedBy=multi-user.target