From 02ba4ec922698f623b44d7fef9347f5e56e481c1 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Joakim=20Frosteg=C3=A5rd?= <joakim.frostegard@gmail.com>
Date: Tue, 5 Apr 2022 23:03:54 +0200
Subject: [PATCH] privilege dropping: actually set group, default to "nogroup"

---
 aquatic_common/src/privileges.rs | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/aquatic_common/src/privileges.rs b/aquatic_common/src/privileges.rs
index 4475830..d9db45f 100644
--- a/aquatic_common/src/privileges.rs
+++ b/aquatic_common/src/privileges.rs
@@ -27,7 +27,7 @@ impl Default for PrivilegeConfig {
             drop_privileges: false,
             chroot_path: ".".into(),
             user: "nobody".to_string(),
-            group: "nobody".to_string(),
+            group: "nogroup".to_string(),
         }
     }
 }
@@ -51,7 +51,7 @@ impl PrivilegeDropper {
             if self.barrier.wait().is_leader() {
                 PrivDrop::default()
                     .chroot(self.config.chroot_path.clone())
-                    .user(self.config.user.clone())
+                    .group(self.config.group.clone())
                     .user(self.config.user.clone())
                     .apply()
                     .expect("drop privileges");