diff --git a/templates/lxc-oracle.in b/templates/lxc-oracle.in
index 21fef14ed..2402cc500 100644
--- a/templates/lxc-oracle.in
+++ b/templates/lxc-oracle.in
@@ -313,14 +313,14 @@ lxc.tty = 4
 lxc.pts = 1024
 lxc.rootfs = $container_rootfs
 lxc.mount = $cfg_dir/fstab
-# Uncomment these if you don't run anything that needs the capability, and   
+# Uncomment these if you don't run anything that needs the capability, and
 # would like the container to run with less privilege.
 #
-# Dropping sys_admin disables container root from doing a lot of things   
-# that could be bad like re-mounting lxc fstab entries rw for example,    
-# but also disables some useful things like being able to nfs mount, and    
-# things that are already namespaced with ns_capable() kernel checks, like  
-# hostname(1).  
+# Dropping sys_admin disables container root from doing a lot of things
+# that could be bad like re-mounting lxc fstab entries rw for example,
+# but also disables some useful things like being able to nfs mount, and
+# things that are already namespaced with ns_capable() kernel checks, like
+# hostname(1).
 # lxc.cap.drop = sys_admin
 # lxc.cap.drop = net_raw          # breaks dhcp/ping
 # lxc.cap.drop = setgid           # breaks login (initgroups/setgroups)
@@ -330,7 +330,7 @@ lxc.mount = $cfg_dir/fstab
 # lxc.cap.drop = audit_write
 #
 lxc.cap.drop = mac_admin mac_override setfcap setpcap
-lxc.cap.drop = sys_module sys_nice sys_pacct  
+lxc.cap.drop = sys_module sys_nice sys_pacct
 lxc.cap.drop = sys_rawio sys_time
 EOF