YGGverse/aquatic
1
0
Fork 0
mirror of https://github.com/YGGverse/aquatic.git synced 2026-04-01 10:15:31 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions

privilege dropping: actually set group, default to "nogroup"

Browse source
This commit is contained in:
Joakim Frostegård 2022-04-05 23:03:54 +02:00
parent 6f30d05453
commit 02ba4ec922
1 changed files with 2 additions and 2 deletions
Download patch file Download diff file Expand all files Collapse all files

4
aquatic_common/src/privileges.rs
View file

@ -27,7 +27,7 @@ impl Default for PrivilegeConfig {
drop_privileges: false, drop_privileges: false,
chroot_path: ".".into(), chroot_path: ".".into(),
user: "nobody".to_string(), user: "nobody".to_string(),
group: "nobody".to_string(), group: "nogroup".to_string(),
} }
} }
} }
@ -51,7 +51,7 @@ impl PrivilegeDropper {
if self.barrier.wait().is_leader() { if self.barrier.wait().is_leader() {
PrivDrop::default() PrivDrop::default()
.chroot(self.config.chroot_path.clone()) .chroot(self.config.chroot_path.clone())
.user(self.config.user.clone()) .group(self.config.group.clone())
.user(self.config.user.clone()) .user(self.config.user.clone())
.apply() .apply()
.expect("drop privileges"); .expect("drop privileges");