diff options
| author | Ludovic Courtès <ludo@gnu.org> | 2022-05-16 15:29:06 +0200 |
|---|---|---|
| committer | Ludovic Courtès <ludo@gnu.org> | 2022-05-16 15:48:08 +0200 |
| commit | ecfcdff23a5ce390a7edc019c1f1216c4843dc04 (patch) | |
| tree | 1c0751f98df73fe752566cad4bfb57c38179d3e5 | |
| parent | 06a4a3634ad6a97423f178449dce206ec9bdcb49 (diff) | |
| download | guix-patches-ecfcdff23a5ce390a7edc019c1f1216c4843dc04.tar guix-patches-ecfcdff23a5ce390a7edc019c1f1216c4843dc04.tar.gz | |
services: bitlbee: Run as user "bitlbee".
Fixes <https://issues.guix.gnu.org/55450>.
Fixes a bug introduced in 211fe3f66e6dfdaa64974931c458ab1d92afc182
whereby the inetd-spawned process would run as root (it would still run
in a separate user namespace, with UID 1000 inside of it, but had the
authority of root).
* gnu/services/messaging.scm (bitlbee-shepherd-service): Pass #:user
and #:group to 'make-inetd-constructor'. Remove "-u bitlbee" argument
to BITLBEE*.
| -rw-r--r-- | gnu/services/messaging.scm | 4 |
1 files changed, 2 insertions, 2 deletions
diff --git a/gnu/services/messaging.scm b/gnu/services/messaging.scm index 26d47f47de..ec1acba416 100644 --- a/gnu/services/messaging.scm +++ b/gnu/services/messaging.scm @@ -855,14 +855,14 @@ string, you could instantiate a prosody service like this: (start #~(if (defined? 'make-inetd-constructor) (make-inetd-constructor - (list #$bitlbee* "-I" - "-u" "bitlbee" "-c" #$conf) + (list #$bitlbee* "-I" "-c" #$conf) (addrinfo:addr (car (getaddrinfo #$interface #$(number->string port) (logior AI_NUMERICHOST AI_NUMERICSERV)))) #:service-name-stem "bitlbee" + #:user "bitlbee" #:group "bitlbee" ;; Allow 'bitlbee-purple' to use libpurple plugins. #:environment-variables |