# we want to protect sensitive files
shorewall6: non-standard-dir-perm 0750 != 0755 [var/lib/shorewall6/]
shorewall6: non-standard-file-perm 0640 != 0644 [etc/shorewall6/params]
shorewall6: non-standard-file-perm 0640 != 0644 [etc/shorewall6/conntrack]
# Upstream's service file specifies basic.target
shorewall6: systemd-service-file-refers-to-unusual-wantedby-target basic.target [usr/lib/systemd/system/shorewall6.service]
