azak-azkaran · May 27, 2020 18:54
diff --git a/vault.service b/vault.service
 [Unit]
 Description="HashiCorp Vault - A tool for managing secrets" Documentation=https://www.vaultproject.io/docs/
 Requires=network-online.target
 StartLimitBurst=3


 [Service]
 User=andy
 PrivateDevices=yes
 PrivateTmp=yes
 ProtectSystem=full
 ReadWritePaths=/home/andy/Dropbox/vault/
 #ProtectHome=read-only
 #SecureBits=keep-caps
 #Capabilities=CAP_IPC_LOCK+ep
 #CapabilityBoundingSet=CAP_SYSLOG CAP_IPC_LOCK
 NoNewPrivileges=yes
 ExecStart=/usr/local/bin/vault server -config=/etc/vault.d/dropbox.hcl
 KillSignal=SIGINT
 TimeoutStopSec=30s
 Restart=on-failure
 StartLimitBurst=3
 StartLimitInterval=60
 StartLimitIntervalSec=60
 LimitNOFILE=65536
 LimitMEMLOCK=infinity
 Restart=always


 [Install]
 WantedBy=multi-user.target
	[Unit]
	Description="HashiCorp Vault - A tool for managing secrets" Documentation=https://www.vaultproject.io/docs/
	Requires=network-online.target
	StartLimitBurst=3


	[Service]
	User=andy
	PrivateDevices=yes
	PrivateTmp=yes
	ProtectSystem=full
	ReadWritePaths=/home/andy/Dropbox/vault/
	#ProtectHome=read-only
	#SecureBits=keep-caps
	#Capabilities=CAP_IPC_LOCK+ep
	#CapabilityBoundingSet=CAP_SYSLOG CAP_IPC_LOCK
	NoNewPrivileges=yes
	ExecStart=/usr/local/bin/vault server -config=/etc/vault.d/dropbox.hcl
	KillSignal=SIGINT
	TimeoutStopSec=30s
	Restart=on-failure
	StartLimitBurst=3
	StartLimitInterval=60
	StartLimitIntervalSec=60
	LimitNOFILE=65536
	LimitMEMLOCK=infinity
	Restart=always


	[Install]
	WantedBy=multi-user.target