commit 309a025c80f53d918f40bd2c08361321d85cb174 Author: David Fifield david@bamsoftware.com Date: Sat Jun 1 22:10:21 2013 -0700
Use --privdrop-user facilitator-nobody in init scripts. --- facilitator/init.d/facilitator | 3 ++- facilitator/init.d/facilitator-email-poller | 3 ++- facilitator/init.d/facilitator-reg-daemon | 3 ++- 3 files changed, 6 insertions(+), 3 deletions(-)
diff --git a/facilitator/init.d/facilitator b/facilitator/init.d/facilitator index b2f4d19..19bb482 100755 --- a/facilitator/init.d/facilitator +++ b/facilitator/init.d/facilitator @@ -23,8 +23,9 @@ DESC="Flash proxy facilitator" NAME=facilitator PIDFILE=/var/run/$NAME.pid LOGFILE=/var/log/$NAME.log +PRIVDROP_USER=facilitator-nobody DAEMON=/usr/local/bin/$NAME -DAEMON_ARGS="-r $RELAY --log $LOGFILE --pidfile $PIDFILE" +DAEMON_ARGS="-r $RELAY --log $LOGFILE --pidfile $PIDFILE --privdrop-user $PRIVDROP_USER" SCRIPTNAME=/etc/init.d/$NAME
# Exit if the package is not installed diff --git a/facilitator/init.d/facilitator-email-poller b/facilitator/init.d/facilitator-email-poller index 5f1c3d7..2c9ecb8 100755 --- a/facilitator/init.d/facilitator-email-poller +++ b/facilitator/init.d/facilitator-email-poller @@ -20,8 +20,9 @@ NAME=facilitator-email-poller PIDFILE=/var/run/$NAME.pid LOGFILE=/var/log/$NAME.log CONFDIR=/etc/flashproxy +PRIVDROP_USER=facilitator-nobody DAEMON=/usr/local/bin/$NAME -DAEMON_ARGS="--pass $CONFDIR/reg-email.pass --log $LOGFILE --pidfile $PIDFILE" +DAEMON_ARGS="--pass $CONFDIR/reg-email.pass --log $LOGFILE --pidfile $PIDFILE --privdrop-user $PRIVDROP_USER" SCRIPTNAME=/etc/init.d/$NAME
# Exit if the package is not installed diff --git a/facilitator/init.d/facilitator-reg-daemon b/facilitator/init.d/facilitator-reg-daemon index 810f697..e299468 100755 --- a/facilitator/init.d/facilitator-reg-daemon +++ b/facilitator/init.d/facilitator-reg-daemon @@ -20,8 +20,9 @@ NAME=facilitator-reg-daemon PIDFILE=/var/run/$NAME.pid LOGFILE=/var/log/$NAME.log CONFDIR=/etc/flashproxy +PRIVDROP_USER=facilitator-nobody DAEMON=/usr/local/bin/$NAME -DAEMON_ARGS="--key $CONFDIR/reg-daemon.key --log $LOGFILE --pidfile $PIDFILE" +DAEMON_ARGS="--key $CONFDIR/reg-daemon.key --log $LOGFILE --pidfile $PIDFILE --privdrop-user $PRIVDROP_USER" SCRIPTNAME=/etc/init.d/$NAME
# Exit if the package is not installed
tor-commits@lists.torproject.org
-
dcf@torproject.org