[Unit] Description=Anonymizing overlay network for TCP (multi-instance-master) After=network.target [Service] #$USER User=USER Group=USER Type=simple #Type=forking PrivateTmp=yes PermissionsStartOnly=true ExecStartPre=-/bin/mkdir /var/run/tor ExecStartPre=/bin/cp TORRCPATH /var/run/tor ExecStartPre=/bin/chmod a-wx,go-rwx /var/run/tor/torrc ExecStartPre=/bin/chown -R USER:USER /var/run/tor ExecStart=/usr/local/bin/tor -f TORRCPATH ExecReload=/bin/kill -HUP MAINPID #LimitNPROC = 2 #DeviceAllow = /dev/null rw #DeviceAllow = /dev/urandom r #DeviceAllow = /dev/random r #InaccessibleDirectories = / #ReadOnlyDirectories = /etc/usr #ReadWriteDirectories = /var/lib/tor /var/log/tor #PIDFile=/var/run/tor/tor.pid KillSignal=SIGINT LimitNOFILE=8192 PrivateDevices=yes #Type=oneshot #RemainAfterExit=yes #ExecStart=/bin/true #ExecReload=/bin/true [Install] WantedBy=multi-user.target