19 lines
470 B
SYSTEMD
19 lines
470 B
SYSTEMD
[Unit]
|
|
Description=Discard unused blocks on filesystems from /etc/fstab
|
|
Documentation=man:fstrim(8)
|
|
ConditionVirtualization=!container
|
|
|
|
[Service]
|
|
Type=oneshot
|
|
ExecStart=@sbindir@/fstrim --fstab --verbose --quiet
|
|
ProtectSystem=strict
|
|
ProtectHome=yes
|
|
PrivateDevices=no
|
|
PrivateNetwork=yes
|
|
PrivateUsers=no
|
|
ProtectKernelTunables=yes
|
|
ProtectKernelModules=yes
|
|
ProtectControlGroups=yes
|
|
MemoryDenyWriteExecute=yes
|
|
SystemCallFilter=@default @file-system @basic-io @system-service
|