diff --git a/sp-modules/monitoring/module.nix b/sp-modules/monitoring/module.nix
index 38948bb..9059a15 100644
--- a/sp-modules/monitoring/module.nix
+++ b/sp-modules/monitoring/module.nix
@@ -30,7 +30,11 @@ in
       "-w /root/.ssh -p wa -k rootkey"
       "-w /etc/nixos -p w -k nixosconfig"
       "-w /etc/selfprivacy.nix -p w -k selfprivacyfolder"
-      "-a exit,always -F arch=b64 -S execve"
+      "-a always,exclude -F msgtype=CWD"
+      "-a always,exclude -F msgtype=PATH"
+      "-a always,exclude -F "
+      "-a exit,never -F arch=b64 -F a0=systemctl -F a1=show"
+      # "-a exit,always -F arch=b64 -S execve"
       "-a always,exit -F arch=b64 -S kexec_load -k KEXEC"
       "-a always,exit -F arch=b64 -S mknod -S mknodat -k specialfiles"
       "-a always,exit -F arch=b64 -S mount -S umount2 -F auid!=-1 -k mount"