Fix ReadWriteDirectories for fail2ban, added /var/tmp.

2013-07-28 18:33:57 +02:00 · 2013-07-28 18:33:57 +02:00 · 96be2d5a7d
parent 5a2390327d
commit 96be2d5a7d
1 changed files with 1 additions and 1 deletions
--- a/modules/services/security/fail2ban.nix
+++ b/modules/services/security/fail2ban.nix
@ -117,7 +117,7 @@ in
        serviceConfig =
          { ExecStart = "${pkgs.fail2ban}/bin/fail2ban-server -f";
            ReadOnlyDirectories = "/";
-            ReadWriteDirectories = "/var/run/fail2ban";
+            ReadWriteDirectories = "/var/run/fail2ban /var/tmp";
            CapabilityBoundingSet="CAP_DAC_READ_SEARCH CAP_NET_ADMIN CAP_NET_RAW";
          };