diff --git a/objectifier-module.nix b/objectifier-module.nix
index 66975a6..a90d8b0 100644
--- a/objectifier-module.nix
+++ b/objectifier-module.nix
@@ -63,26 +63,25 @@ in {
         OBJECTIFIER_BUFFER_SIZE = "524288";
         OBJECTIFIER_CLEANUP_MAX_AGE = toString cfg.cleanup.max_file_age;
         OBJECTIFIER_CLEANUP_DELAY = toString cfg.cleanup.delay;
-        TMPDIR = "/tmp";
       };
       serviceConfig = {
-        PrivateUsers = true;
-        PrivateDevices = true;
-        PrivateTmp = true;
-        PrivateMounts = true;
-        ProtectControlGroups = true;
-        ProtectKernelTunables = true;
-        ProtectKernelModules = true;
-        ProtectSystem = true;
-        ProtectHostname = true;
-        ProtectHome = true;
-        ProtectClock = true;
-        ProtectKernelLogs = true;
-        DynamicUser = true;
-        MemoryDenyWriteExecute = true;
-        RestrictRealtime = true;
-        LockPersonality = true;
-        PermissionsStartOnly = true;
+        # PrivateUsers = true;
+        # PrivateDevices = true;
+        # PrivateTmp = true;
+        # PrivateMounts = true;
+        # ProtectControlGroups = true;
+        # ProtectKernelTunables = true;
+        # ProtectKernelModules = true;
+        # ProtectSystem = true;
+        # ProtectHostname = true;
+        # ProtectHome = true;
+        # ProtectClock = true;
+        # ProtectKernelLogs = true;
+        # DynamicUser = true;
+        # MemoryDenyWriteExecute = true;
+        # RestrictRealtime = true;
+        # LockPersonality = true;
+        # PermissionsStartOnly = true;
         WorkingDirectory = "${pkgs.objectifier}";
         StateDirectory = "objectifier";
         CacheDirectory = "objectifier";