Home Explore Help
Register Sign In
Apq
/
SoftEtherVPN_Stable
mirror of https://github.com/SoftEtherVPN/SoftEtherVPN_Stable.git
1
0
Fork 0
Files Issues 0 Wiki
Browse Source

Granting CAP_SETUID as it seems to be needed

Hideki Saito 10 years ago
parent
04cfcd47ab
commit
bccc18b825
3 changed files with 3 additions and 3 deletions
Split View Show Diff Stats
  1. 1 1
      systemd/softether-vpnbridge.service
  2. 1 1
      systemd/softether-vpnclient.service
  3. 1 1
      systemd/softether-vpnserver.service

+ 1 - 1
systemd/softether-vpnbridge.service
View File 

@@ -16,7 +16,7 @@ ProtectHome=yes
 
 ProtectSystem=full
 
 ReadOnlyDirectories=/
 
 ReadWriteDirectories=-/opt/vpnbridge
 
-CapabilityBoundingSet=CAP_NET_ADMIN CAP_NET_BIND_SERVICE CAP_NET_BROADCAST CAP_NET_RAW CAP_SYS_NICE CAP_SYS_ADMIN
 
+CapabilityBoundingSet=CAP_NET_ADMIN CAP_NET_BIND_SERVICE CAP_NET_BROADCAST CAP_NET_RAW CAP_SYS_NICE CAP_SYS_ADMIN CAP_SETUID
 
 
 [Install]
 
 WantedBy=multi-user.target

+ 1 - 1
systemd/softether-vpnclient.service
View File 

@@ -17,7 +17,7 @@ ProtectHome=yes
 
 ProtectSystem=full
 
 ReadOnlyDirectories=/
 
 ReadWriteDirectories=-/opt/vpnclient
 
-CapabilityBoundingSet=CAP_NET_ADMIN CAP_NET_BIND_SERVICE CAP_NET_BROADCAST CAP_NET_RAW CAP_SYS_NICE CAP_SYS_ADMIN
 
+CapabilityBoundingSet=CAP_NET_ADMIN CAP_NET_BIND_SERVICE CAP_NET_BROADCAST CAP_NET_RAW CAP_SYS_NICE CAP_SYS_ADMIN CAP_SETUID
 
 
 [Install]
 
 WantedBy=multi-user.target

+ 1 - 1
systemd/softether-vpnserver.service
View File 

@@ -17,7 +17,7 @@ ProtectHome=yes
 
 ProtectSystem=full
 
 ReadOnlyDirectories=/
 
 ReadWriteDirectories=-/opt/vpnserver
 
-CapabilityBoundingSet=CAP_NET_ADMIN CAP_NET_BIND_SERVICE CAP_NET_BROADCAST CAP_NET_RAW CAP_SYS_NICE CAP_SYS_ADMIN
 
+CapabilityBoundingSet=CAP_NET_ADMIN CAP_NET_BIND_SERVICE CAP_NET_BROADCAST CAP_NET_RAW CAP_SYS_NICE CAP_SYS_ADMIN CAP_SETUID
 
 
 [Install]
 
 WantedBy=multi-user.target