diff --git a/tljh/systemd-units/jupyterhub.service b/tljh/systemd-units/jupyterhub.service
index 477d04b..63527c4 100644
--- a/tljh/systemd-units/jupyterhub.service
+++ b/tljh/systemd-units/jupyterhub.service
@@ -8,8 +8,6 @@ After=traefik.service
 [Service]
 User=root
 Restart=always
-# jupyterhub process should have no access to home directories
-ProtectHome=tmpfs
 WorkingDirectory={install_prefix}/state
 # Protect bits that are normally shared across the system
 PrivateTmp=yes
diff --git a/tljh/systemd-units/traefik.service b/tljh/systemd-units/traefik.service
index 04f37ee..5884fa4 100644
--- a/tljh/systemd-units/traefik.service
+++ b/tljh/systemd-units/traefik.service
@@ -7,7 +7,8 @@ After=network.target
 [Service]
 User=root
 Restart=always
-ProtectHome=tmpfs
+# traefik process should have no access to home directories
+ProtectHome=yes
 ProtectSystem=strict
 PrivateTmp=yes
 PrivateDevices=yes