fix write permissions

This commit is contained in:
Ludwig Behm 2024-02-20 22:14:56 +01:00
parent 5d1c9803b5
commit 7855c3bec8
2 changed files with 5 additions and 5 deletions

View file

@ -25,5 +25,5 @@ PrivateTmp=yes
ReadOnlyDirectories=/ ReadOnlyDirectories=/
WorkingDirectory=/tmp WorkingDirectory=/tmp
ConfigurationDirectoryMode=550 ConfigurationDirectoryMode=750
CacheDirectoryMode=550 CacheDirectoryMode=750

View file

@ -22,11 +22,11 @@ exec systemd-run --quiet --collect --unit=temp-borg-init-sandbox.service \
--pipe < /etc/borg/$NAME/borg_passphrase \ --pipe < /etc/borg/$NAME/borg_passphrase \
--working-directory=/tmp \ --working-directory=/tmp \
-p "ConfigurationDirectory=borg/$NAME" \ -p "ConfigurationDirectory=borg/$NAME" \
-p "ConfigurationDirectoryMode=550" \ -p "ConfigurationDirectoryMode=750" \
-p "CacheDirectory=borg/$NAME" \ -p "CacheDirectory=borg/$NAME" \
-p "CacheDirectoryMode=550" \ -p "CacheDirectoryMode=750" \
-p "PrivateTmp=yes" \ -p "PrivateTmp=yes" \
-p "ReadOnlyPaths=/ /etc/borg/$NAME" \ -p "ReadOnlyPaths=/" \
-p "ReadWritePaths=/root/.ssh/known_hosts" \ -p "ReadWritePaths=/root/.ssh/known_hosts" \
-p "EnvironmentFile=/etc/borg/$NAME/config.env" \ -p "EnvironmentFile=/etc/borg/$NAME/config.env" \
--setenv=BORG_PASSPHRASE_FD=0 \ --setenv=BORG_PASSPHRASE_FD=0 \