mirror of https://github.com/foxcpp/maddy.git synced 2025-04-04 05:37:34 +03:00

fox.cpp dbfdfd0728 dist: Add LogsDirectory to systemd unit See https://github.com/foxcpp/maddy/wiki/fail2ban-configuration Without that it will be impossible for maddy to write to /var/log/maddy due to sandboxing (ProtectSystem=strict).		2019-09-19 01:59:50 +03:00
..
maddy.service	dist: Add LogsDirectory to systemd unit	2019-09-19 01:59:50 +03:00
maddy@.service	dist: Add LogsDirectory to systemd unit	2019-09-19 01:59:50 +03:00
README.md	dist: Add systemd unit files	2019-09-15 04:01:36 +03:00

README.md

Distribution files for maddy

systemd unit

maddy.service launches using default config path (/etc/maddy/maddy.conf). maddy@.service launches maddy using custom config path. E.g. maddy@foo.service will use /etc/maddy/foo.conf.

Both unit files use DynamicUser to allocate user account for maddy, hence you don't need to create it explicitly. Also, they use *Directory options, so required directories will be created as well.

Additionally, unit files apply strict sandboxing, limiting maddy permissions on the system to a bare minimum. Subset of these options makes it impossible for privileged authentication helper binaries to gain required permissions, so you may have to disable it when using system account-based authentication with maddy running as a unprivilieged user.