cmd/tailscaled: add /run to the allowed paths for iptables.

Signed-off-by: David Anderson <danderson@tailscale.com>
2024-11-29 13:05:46 +00:00 · 2021-01-28 12:57:10 -08:00 · 2021-01-28 12:57:10 -08:00 · de497358b8
commit de497358b8
parent 1e28207a15
1 changed files with 2 additions and 0 deletions
--- a/cmd/tailscaled/tailscaled.service
+++ b/cmd/tailscaled/tailscaled.service
@ -34,6 +34,8 @@ ProtectHome=true
 ProtectKernelTunables=true
 ProtectSystem=strict
 ReadWritePaths=/etc/
+ReadWritePaths=/run/
+ReadWritePaths=/var/run/
 RestrictSUIDSGID=true
 SystemCallArchitectures=native