aboutsummaryrefslogtreecommitdiff
path: root/net/crowdsec-firewall-bouncer/files/crowdsec-firewall-bouncer.initd
diff options
context:
space:
mode:
Diffstat (limited to 'net/crowdsec-firewall-bouncer/files/crowdsec-firewall-bouncer.initd')
-rwxr-xr-xnet/crowdsec-firewall-bouncer/files/crowdsec-firewall-bouncer.initd7
1 files changed, 7 insertions, 0 deletions
diff --git a/net/crowdsec-firewall-bouncer/files/crowdsec-firewall-bouncer.initd b/net/crowdsec-firewall-bouncer/files/crowdsec-firewall-bouncer.initd
index 04acd1617..eb5b79b7b 100755
--- a/net/crowdsec-firewall-bouncer/files/crowdsec-firewall-bouncer.initd
+++ b/net/crowdsec-firewall-bouncer/files/crowdsec-firewall-bouncer.initd
@@ -210,6 +210,13 @@ run_bouncer() {
procd_set_param command "$PROG" -c "$VARCONFIG"
procd_set_param stdout 1
procd_set_param stderr 1
+ procd_set_param nice 10
+ if [ -x "/sbin/ujail" ]; then
+ procd_add_jail cs-bouncer log
+ procd_add_jail_mount $VARCONFIG
+ procd_add_jail_mount_rw /var/log/
+ procd_set_param no_new_privs 1
+ fi
procd_close_instance
fi
}
Powered by cgit, Themed by Ted Yin.