pdns/pdns-systemd.patch

--- pdns-4.1.0-rc1/pdns/pdns.service.in.orig	2017-08-31 10:52:49.000000000 +0200
+++ pdns-4.1.0-rc1/pdns/pdns.service.in	2017-10-15 19:42:44.268439749 +0200
@@ -7,14 +7,15 @@ After=network-online.target mysqld.servi
 
 [Service]
 Type=notify
-ExecStart=@sbindir@/pdns_server --guardian=no --daemon=no --disable-syslog --write-pid=no
+ExecStart=@sbindir@/pdns_server --guardian=no --daemon=no --write-pid=no
 Restart=on-failure
 RestartSec=1
 StartLimitInterval=0
 PrivateTmp=true
 PrivateDevices=true
 CapabilityBoundingSet=CAP_NET_BIND_SERVICE CAP_SETGID CAP_SETUID CAP_CHOWN CAP_SYS_CHROOT
-NoNewPrivileges=true
+# Disabled NoNewPrivileges (#1305522)
+# NoNewPrivileges=true
 # ProtectSystem=full will disallow write access to /etc and /usr, possibly
 # not being able to write slaved-zones into sqlite3 or zonefiles.
 ProtectSystem=full