Blame cjdns.genconf.patch
|
|
2f8dfd1 |
diff -up ./client/cjdroute2.c.genconf ./client/cjdroute2.c
|
|
|
9b2cd28 |
--- ./client/cjdroute2.c.genconf 2019-05-02 04:02:32.000000000 -0400
|
|
|
9b2cd28 |
+++ ./client/cjdroute2.c 2019-05-08 12:14:53.146838389 -0400
|
|
|
9b2cd28 |
@@ -336,7 +336,7 @@ static int genconf(struct Random* rand,
|
|
|
2f8dfd1 |
" // and ETHInterface will be unable to hot-add new interfaces\n"
|
|
|
2f8dfd1 |
" // Use { \"setuser\": 0 } to disable.\n"
|
|
|
2f8dfd1 |
" // Default: enabled with keepNetAdmin\n"
|
|
|
2f8dfd1 |
- " { \"setuser\": \"nobody\", \"keepNetAdmin\": 1 },\n"
|
|
|
2f8dfd1 |
+ " { \"setuser\": \"cjdns\", \"keepNetAdmin\": 1 },\n"
|
|
|
2f8dfd1 |
"\n"
|
|
|
2f8dfd1 |
" // Chroot changes the filesystem root directory which cjdns sees, blocking it\n"
|
|
|
2f8dfd1 |
" // from accessing files outside of the chroot sandbox, if the user does not\n"
|
|
|
9b2cd28 |
@@ -348,7 +348,7 @@ static int genconf(struct Random* rand,
|
|
|
2f8dfd1 |
}
|
|
|
2f8dfd1 |
else {
|
|
|
2f8dfd1 |
printf(" // Default: enabled (using \"/var/run\")\n"
|
|
|
2f8dfd1 |
- " { \"chroot\": \"/var/run/\" },\n");
|
|
|
2f8dfd1 |
+ " { \"chroot\": \"/var/empty/cjdns\" },\n");
|
|
|
2f8dfd1 |
}
|
|
|
2f8dfd1 |
printf("\n"
|
|
|
2f8dfd1 |
" // Nofiles is a deprecated security feature which prevents cjdns from opening\n"
|