| Server IP : 162.214.74.102 / Your IP : 216.73.216.36 Web Server : Apache System : Linux dedi-4363141.lrsys.com.br 3.10.0-1160.119.1.el7.tuxcare.els25.x86_64 #1 SMP Wed Oct 1 17:37:27 UTC 2025 x86_64 User : lrsys ( 1015) PHP Version : 5.6.40 Disable Function : exec,passthru,shell_exec,system MySQL : ON | cURL : ON | WGET : ON | Perl : ON | Python : ON | Sudo : ON | Pkexec : ON Directory : /etc/systemd/system/imunify-antivirus.service.d/ |
Upload File : |
[Service] # DEF-41613: ReadWritePaths= (231+) and AmbientCapabilities= (229+) # are silently dropped on older systemd. Without them: # * ProtectSystem=full would lock /etc and break agent config writes; # * NoNewPrivileges=true would clear subprocess effective caps, # breaking iptables-restore / ipset / i360-storage-replacehdb-v2 # (the kernel's UID-0 effective-raise-on-exec is disabled by NNP # and we have no AmbientCapabilities= here to compensate). # Reset both so CL7 / CentOS 7 falls back to the pre-MR-338 behaviour # while keeping CapabilityBoundingSet= which 219 honors. Use explicit # "=no" rather than "=" — systemd 219 doesn't understand the # empty-value reset syntax (added in v229) and ignores those lines as # parse failures. ProtectSystem=no NoNewPrivileges=no