mirror of
https://github.com/falcosecurity/falco.git
synced 2026-03-19 11:12:36 +00:00
25 lines
508 B
Desktop File
25 lines
508 B
Desktop File
[Unit]
|
|
Description=Falco: Container Native Runtime Security
|
|
Documentation=https://falco.org/docs/
|
|
|
|
[Service]
|
|
Type=simple
|
|
User=root
|
|
ExecStartPre=/sbin/modprobe falco
|
|
ExecStart=/usr/bin/falco --pidfile=/var/run/falco.pid
|
|
ExecStopPost=/sbin/rmmod falco
|
|
UMask=0077
|
|
TimeoutSec=30
|
|
RestartSec=15s
|
|
Restart=on-failure
|
|
PrivateTmp=true
|
|
NoNewPrivileges=yes
|
|
ProtectHome=read-only
|
|
ProtectSystem=full
|
|
ProtectKernelTunables=true
|
|
RestrictRealtime=true
|
|
RestrictAddressFamilies=~AF_PACKET
|
|
|
|
[Install]
|
|
WantedBy=multi-user.target
|