From 44b3285bb2b9bb344de7010b312df8adfd656c19 Mon Sep 17 00:00:00 2001
From: Cengiz Can <123910+cengizIO@users.noreply.github.com>
Date: Mon, 13 May 2019 15:25:04 +0300
Subject: [PATCH] PrivateUsers=true prevents privileged port mapping

---
 util/endlessh.service | 3 ++-
 1 file changed, 2 insertions(+), 1 deletion(-)

diff --git a/util/endlessh.service b/util/endlessh.service
index f6a0419..f2e9901 100644
--- a/util/endlessh.service
+++ b/util/endlessh.service
@@ -27,10 +27,11 @@ ProtectHome=true
 ##     setcap 'cap_net_bind_service=+ep' /usr/local/bin/endlessh
 ## 2) uncomment following line
 #AmbientCapabilities=CAP_NET_BIND_SERVICE
+## 4) comment following line
+PrivateUsers=true
 
 NoNewPrivileges=true
 ConfigurationDirectory=endlessh
-PrivateUsers=true
 ProtectKernelTunables=true
 ProtectKernelModules=true
 ProtectControlGroups=true