drkonqi-coredump-processor@.service

This unit is provided by:

• https://archlinux.org/packages/extra/x86_64/drkonqi/

• https://packages.debian.org/unstable/drkonqi

• https://packages.fedoraproject.org/pkgs/plasma-drkonqi/

• https://software.opensuse.org/package/drkonqi5

Options

• [Install]
  • WantedBy=systemd-coredump@.service
• [Service]
  • CapabilityBoundingSet=~CAP_SYS_PTRACE CAP_SYS_ADMIN CAP_NET_ADMIN CAP_KILL CAP_SYS_CHROOT CAP_BLOCK_SUSPEND CAP_LINUX_IMMUTABLE
  • ExecStart=/usr/lib/drkonqi-coredump-processor %b %i
  • ExecStart=/usr/lib/x86_64-linux-gnu/libexec/drkonqi-coredump-processor %b %i
  • ExecStart=/usr/libexec/drkonqi-coredump-processor %b %i
  • IPAddressDeny=any
  • LockPersonality
    Introduced in systemd 235
    =yes
  • MemoryDenyWriteExecute
    Introduced in systemd 231
    =yes
  • Nice=10
  • NoNewPrivileges
    Introduced in systemd 239
    =yes
  • OOMScoreAdjust=500
  • PrivateDevices
    Introduced in systemd 209
    =yes
  • PrivateNetwork=yes
  • PrivateTmp=yes
  • ProtectClock
    Introduced in systemd 245
    =yes
  • ProtectControlGroups
    Introduced in systemd 232
    =yes
  • ProtectHostname
    Introduced in systemd 242
    =yes
  • ProtectKernelLogs
    Introduced in systemd 244
    =yes
  • ProtectKernelModules
    Introduced in systemd 232
    =yes
  • ProtectKernelTunables
    Introduced in systemd 232
    =yes
  • ProtectSystem
    Introduced in systemd 214
    =strict
  • RestrictAddressFamilies=AF_UNIX
  • RestrictNamespaces
    Introduced in systemd 233
    =yes
  • RestrictRealtime
    Introduced in systemd 231
    =yes
  • RestrictSUIDSGID
    Introduced in systemd 242
    =yes
  • RuntimeMaxSec=5 minutes
  • SystemCallArchitectures=native
  • SystemCallErrorNumber=EPERM
  • SystemCallFilter=@system-service ~@privileged @resources
• [Unit]
  • Description=Pass systemd-coredump journal entries to relevant user for potential DrKonqi handling

Additionnal notes

Nothing here.