dragonfly
1[Unit]
2Description=Modern and fast key-value store
3After=network.target
4Documentation=
5
6[Service]
7Type=simple
8EnvironmentFile=-/etc/dragonfly/environment
9ExecStart=/usr/bin/dragonfly --flagfile=/etc/dragonfly/dragonfly.conf
10PIDFile=/var/run/dragonfly/dragonfly.pid
11TimeoutStopSec=infinity
12Restart=always
13User=dfly
14Group=dfly
15RuntimeDirectory=dragonfly
16RuntimeDirectoryMode=2755
17
18UMask=007
19PrivateTmp=yes
20LimitNOFILE=262144
21PrivateDevices=yes
22ProtectHome=yes
23ProtectSystem=full
24
25ReadWritePaths=-/var/lib/dragonfly
26ReadWritePaths=-/var/log/dragonfly
27ReadWritePaths=-/var/run/dragonfly
28
29NoNewPrivileges=true
30CapabilityBoundingSet=CAP_SETGID CAP_SETUID CAP_SYS_RESOURCE
31MemoryDenyWriteExecute=true
32ProtectKernelModules=true
33ProtectKernelTunables=true
34ProtectControlGroups=true
35RestrictRealtime=true
36RestrictNamespaces=true
37RestrictAddressFamilies=AF_INET AF_INET6 AF_UNIX
38
39
40
41[Install]
42WantedBy=multi-user.target
43Alias=dragonfly.service
44