diff options
author | Ludovic Courtès <ludo@gnu.org> | 2022-05-16 15:29:06 +0200 |
---|---|---|
committer | Ludovic Courtès <ludo@gnu.org> | 2022-05-16 15:48:08 +0200 |
commit | ecfcdff23a5ce390a7edc019c1f1216c4843dc04 (patch) | |
tree | 1c0751f98df73fe752566cad4bfb57c38179d3e5 /gnu | |
parent | 06a4a3634ad6a97423f178449dce206ec9bdcb49 (diff) | |
download | guix-ecfcdff23a5ce390a7edc019c1f1216c4843dc04.tar.gz |
services: bitlbee: Run as user "bitlbee".
Fixes <https://issues.guix.gnu.org/55450>. Fixes a bug introduced in 211fe3f66e6dfdaa64974931c458ab1d92afc182 whereby the inetd-spawned process would run as root (it would still run in a separate user namespace, with UID 1000 inside of it, but had the authority of root). * gnu/services/messaging.scm (bitlbee-shepherd-service): Pass #:user and #:group to 'make-inetd-constructor'. Remove "-u bitlbee" argument to BITLBEE*.
Diffstat (limited to 'gnu')
-rw-r--r-- | gnu/services/messaging.scm | 4 |
1 files changed, 2 insertions, 2 deletions
diff --git a/gnu/services/messaging.scm b/gnu/services/messaging.scm index 26d47f47de..ec1acba416 100644 --- a/gnu/services/messaging.scm +++ b/gnu/services/messaging.scm @@ -855,14 +855,14 @@ string, you could instantiate a prosody service like this: (start #~(if (defined? 'make-inetd-constructor) (make-inetd-constructor - (list #$bitlbee* "-I" - "-u" "bitlbee" "-c" #$conf) + (list #$bitlbee* "-I" "-c" #$conf) (addrinfo:addr (car (getaddrinfo #$interface #$(number->string port) (logior AI_NUMERICHOST AI_NUMERICSERV)))) #:service-name-stem "bitlbee" + #:user "bitlbee" #:group "bitlbee" ;; Allow 'bitlbee-purple' to use libpurple plugins. #:environment-variables |