This unit is provided by:
-
https:// packages.debian.org/ unstable/ postfix-mta-sts-resolver -
https:// packages.fedoraproject.org/ pkgs/ postfix-mta-sts-resolver/
Options
-
[Install]-
WantedBy=multi-user.target
-
-
[Service]-
AmbientCapabilities= -
CapabilityBoundingSet= -
DevicePolicy=closed -
ExecStart=/usr/bin/mta-sts-daemon --config /etc/mta-sts-daemon.yml -
Group=_mta-sts -
Group=mta-sts -
LockPersonalityIntroduced in systemd 235=yes -
MemoryDenyWriteExecuteIntroduced in systemd 231=yes -
NoNewPrivilegesIntroduced in systemd 239=yes -
PrivateDevicesIntroduced in systemd 209=yes -
PrivateTmp=yes -
ProtectControlGroupsIntroduced in systemd 232=yes -
ProtectHomeIntroduced in systemd 214=yes -
ProtectKernelModulesIntroduced in systemd 232=yes -
ProtectKernelTunablesIntroduced in systemd 232=yes -
ProtectSystemIntroduced in systemd 214=strict -
ReadWritePaths=/var/lib/mta-sts/ -/var/spool/postfix/run/mta-sts -
RemoveIPCIntroduced in systemd 232=yes -
Restart=on-failure -
RestrictAddressFamilies=AF_INET AF_INET6 AF_UNIX -
RestrictNamespacesIntroduced in systemd 233=yes -
RestrictRealtimeIntroduced in systemd 231=yes -
SystemCallArchitectures=native -
SystemCallFilter=@basic-io @default @file-system @io-event @ipc @network-io @process @signal @system-service -
Type=notify -
UMask=0022 -
User=_mta-sts -
User=mta-sts
-
-
[Unit]-
After=redis-server.service -
Before=postfix.service -
Description=Provide MTA-STS policy map to Postfix -
Documentation=man:mta-sts-daemon(1) man:mta-sts-daemon.yml(5)
-
Additionnal notes
Nothing here.