me
/
guix
Archived
1
0
Fork 0
Code

services: bitlbee: Run as user "bitlbee". 

Fixes <https://issues.guix.gnu.org/55450>.

Fixes a bug introduced in 211fe3f66e
whereby the inetd-spawned process would run as root (it would still run
in a separate user namespace, with UID 1000 inside of it, but had the
authority of root).

* gnu/services/messaging.scm (bitlbee-shepherd-service): Pass #:user
and #:group to 'make-inetd-constructor'.  Remove "-u bitlbee" argument
to BITLBEE*.
Ludovic Courtès 2022-05-16 15:29:06 +02:00
parent 06a4a3634a
commit ecfcdff23a
No known key found for this signature in database
GPG Key ID: 090B11993D9AEBB5
1 changed files with 2 additions and 2 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

4
gnu/services/messaging.scm
View File

@ -855,14 +855,14 @@ string, you could instantiate a prosody service like this:
(start #~(if (defined? 'make-inetd-constructor) (start #~(if (defined? 'make-inetd-constructor)
(make-inetd-constructor (make-inetd-constructor
(list #$bitlbee* "-I" (list #$bitlbee* "-I" "-c" #$conf)
"-u" "bitlbee" "-c" #$conf)
(addrinfo:addr (addrinfo:addr
(car (getaddrinfo #$interface (car (getaddrinfo #$interface
#$(number->string port) #$(number->string port)
(logior AI_NUMERICHOST (logior AI_NUMERICHOST
AI_NUMERICSERV)))) AI_NUMERICSERV))))
#:service-name-stem "bitlbee" #:service-name-stem "bitlbee"
#:user "bitlbee" #:group "bitlbee"
;; Allow 'bitlbee-purple' to use libpurple plugins. ;; Allow 'bitlbee-purple' to use libpurple plugins.
#:environment-variables #:environment-variables