dragonfly

1
[Unit]
2
Description=Modern and fast key-value store
3
After=network.target
4
Documentation=
5

6
[Service]
7
Type=simple
8
EnvironmentFile=-/etc/dragonfly/environment
9
ExecStart=/usr/bin/dragonfly --flagfile=/etc/dragonfly/dragonfly.conf
10
PIDFile=/var/run/dragonfly/dragonfly.pid
11
TimeoutStopSec=infinity
12
Restart=always
13
User=dfly
14
Group=dfly
15
RuntimeDirectory=dragonfly
16
RuntimeDirectoryMode=2755
17

18
UMask=007
19
PrivateTmp=yes
20
LimitNOFILE=262144
21
PrivateDevices=yes
22
ProtectHome=yes
23
ProtectSystem=full
24

25
ReadWritePaths=-/var/lib/dragonfly
26
ReadWritePaths=-/var/log/dragonfly
27
ReadWritePaths=-/var/run/dragonfly
28

29
NoNewPrivileges=true
30
CapabilityBoundingSet=CAP_SETGID CAP_SETUID CAP_SYS_RESOURCE
31
MemoryDenyWriteExecute=true
32
ProtectKernelModules=true
33
ProtectKernelTunables=true
34
ProtectControlGroups=true
35
RestrictRealtime=true
36
RestrictNamespaces=true
37
RestrictAddressFamilies=AF_INET AF_INET6 AF_UNIX
38

39

40

41
[Install]
42
WantedBy=multi-user.target
43
Alias=dragonfly.service
44