Security/Drops the sysadmin privilege from the daemon
The systemd manual recommends to drop this capability for the sandbox to be effective. In theory, with the sysadmin capability the sandbox restrictions could be circumvented.
The systemd manual recommends to drop this capability for the sandbox to be effective. In theory, with the sysadmin capability the sandbox restrictions could be circumvented.