From 2704e723087ab28231574102b53b510666ffa2be Mon Sep 17 00:00:00 2001
From: Bastien Nocera <hadess@hadess.net>
Date: Thu, 26 Apr 2018 14:44:02 +0200
Subject: [PATCH] data: Restrict available socket protocols

When starting the daemon
---
 data/fprintd.service.in | 1 +
 1 file changed, 1 insertion(+)

diff --git a/data/fprintd.service.in b/data/fprintd.service.in
index 24d7f5d..5f46810 100644
--- a/data/fprintd.service.in
+++ b/data/fprintd.service.in
@@ -17,6 +17,7 @@ PrivateTmp=true
 
 # Network
 PrivateNetwork=true
+RestrictAddressFamilies=AF_UNIX AF_LOCAL AF_NETLINK
 
 # Execute Mappings
 MemoryDenyWriteExecute=true