From 22c085b35d2cec396f46cc848d2545c075423c4f Mon Sep 17 00:00:00 2001
From: "Dustin C. Hatch" <dustin@hatch.name>
Date: Thu, 21 Sep 2023 16:31:58 -0500
Subject: [PATCH] frigate: Disable systemd filesystem isolation

When`ProtectSystem` is enabled, systemd sets up a separate mount
namespace for the service.  Unfortunately, this appears to interfere
with Podman and prevents it from cleaning up containers on shutdown.
---
 frigate.container | 4 ----
 1 file changed, 4 deletions(-)

diff --git a/frigate.container b/frigate.container
index 353bbce..e0bd304 100644
--- a/frigate.container
+++ b/frigate.container
@@ -21,10 +21,6 @@ AddDevice=/dev/dri/renderD128
 Network=host
 
 [Service]
-PrivateTmp=yes
-ProtectSystem=full
-TemporaryFileSystem=/etc/containers/networks
-ReadWritePaths=/etc/containers/networks
 UMask=0077
 Restart=always