From bf26c31eb9f65c52af8a68d01cdabd0cb6aefb4a Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?J=C3=B6rg=20Sachse?= <joerg.sachse@slub-dresden.de>
Date: Thu, 11 Apr 2024 13:52:53 +0200
Subject: [PATCH] fix: set supported value for ProtectSystem= statement

---
 .../lib/systemd/system/rosetta_maintenance_begin.service.j2     | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/templates/usr/local/lib/systemd/system/rosetta_maintenance_begin.service.j2 b/templates/usr/local/lib/systemd/system/rosetta_maintenance_begin.service.j2
index 77d68c7..bd83ab4 100644
--- a/templates/usr/local/lib/systemd/system/rosetta_maintenance_begin.service.j2
+++ b/templates/usr/local/lib/systemd/system/rosetta_maintenance_begin.service.j2
@@ -13,7 +13,7 @@ Group={{ vault_rosetta_group }}
 ### Security features
 # documented at https://www.freedesktop.org/software/systemd/man/systemd.exec.html
 # or at `man (5) systemd.exec`
-ProtectSystem=strict
+ProtectSystem=full
 ProtectHome=read-only
 #ProtectHostname=true
 #ProtectClock=true
-- 
GitLab