michael 24bd94dec4 feat(deployment): add systemd security hardening ... - Add ProtectSystem=strict for read-only filesystem - Add ReadWritePaths for required directories - Add ProtectHome=yes to block home access - Add NoNewPrivileges=yes to prevent escalation - Add PrivateTmp=yes for isolated temp space - Add RestrictAddressFamilies=AF_INET for IPv4-only Related DAW/furt#110		2025-09-07 18:40:32 +02:00
..
linux	feat(deployment): add systemd security hardening	2025-09-07 18:40:32 +02:00
openbsd	feat(service): implement PID-file based service management	2025-09-07 16:57:35 +02:00