mirror of
https://github.com/falcosecurity/falco.git
synced 2025-09-02 15:15:17 +00:00
28 lines
580 B
Desktop File
28 lines
580 B
Desktop File
[Unit]
|
|
Description=Falco: Container Native Runtime Security with ebpf
|
|
Documentation=https://falco.org/docs/
|
|
Before=falcoctl-artifact-follow.service
|
|
Wants=falcoctl-artifact-follow.service
|
|
|
|
[Service]
|
|
Type=simple
|
|
User=root
|
|
Environment=FALCO_BPF_PROBE=
|
|
ExecStart=/usr/bin/falco
|
|
ExecReload=kill -1 $MAINPID
|
|
UMask=0077
|
|
TimeoutSec=30
|
|
RestartSec=15s
|
|
Restart=on-failure
|
|
PrivateTmp=true
|
|
NoNewPrivileges=yes
|
|
ProtectHome=read-only
|
|
ProtectSystem=full
|
|
ProtectKernelTunables=true
|
|
RestrictRealtime=true
|
|
RestrictAddressFamilies=~AF_PACKET
|
|
StandardOutput=null
|
|
|
|
[Install]
|
|
WantedBy=multi-user.target
|