sylyx/aitrader
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

fix(systemd): disable ProtectHome (uv stores python in user home)

Browse Source
This commit is contained in:
sylyx 2026-05-07 14:36:46 +02:00
parent 344d30f440
commit bf6716375a
2 changed files with 3 additions and 2 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

2
deploy/systemd/aitrader-dashboard.service
View File

@ -23,7 +23,7 @@ StandardError=journal
NoNewPrivileges=true NoNewPrivileges=true
ProtectSystem=strict ProtectSystem=strict
ProtectHome=true ProtectHome=false
ReadWritePaths=/opt/aitrader/data ReadWritePaths=/opt/aitrader/data
PrivateTmp=true PrivateTmp=true

3
deploy/systemd/aitrader.service
View File

@ -18,7 +18,8 @@ StandardError=journal
# Hardening # Hardening
NoNewPrivileges=true NoNewPrivileges=true
ProtectSystem=strict ProtectSystem=strict
ProtectHome=true # ProtectHome=false weil uv den Python-Interpreter in /home/aitrader/.local/share/uv ablegt
ProtectHome=false
ReadWritePaths=/opt/aitrader/data ReadWritePaths=/opt/aitrader/data
PrivateTmp=true PrivateTmp=true
ProtectKernelTunables=true ProtectKernelTunables=true