Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
Manually creating directories conflicts with systemd service hardening features. Particularly, `ProtectSystem=strict` mounts the filesystem as read-only for the processes started by the unit which leads to `mkdir` failing. By setting `User=mosquitto` and adding `RuntimeDirectory` and `LogsDirectory`, systemd creates `/run/mosquitto` and `/var/log/mosquitto` with the right permissions even `ProtectSystem=strict` is used. Signed-off-by: Guillaume Champagne <[email protected]>
- Loading branch information