1
0
mirror of https://git.FreeBSD.org/ports.git synced 2024-12-22 04:17:44 +00:00
freebsd-ports/sysutils/zrepl
Lewis Cook 621d9c9f59
sysutils/zrepl: /var/run/zrepl should not be world-readable
This partially reverts commit 2a866a1, and instead installs
the pidfile to /var/run/zrepl.pid fixing the problem seen in
PR 255981.

As taken from the zrepl documentation[1]:

[....]
The zrepl daemon needs to open various UNIX sockets in a runtime directory:

a control socket that the CLI commands use to interact with the daemon
the ssh+stdinserver Transport listener opens one socket per configured
client, named after client_identity parameter

There is no authentication on these sockets except the UNIX permissions.
The zrepl daemon will refuse to bind any of the above sockets in a
directory that is world-accessible.
[....]

[1] 	https://zrepl.github.io/configuration/misc.html#runtime-directories-unix-sockets

PR:		256472
Reported by:	Raúl <raul.munoz@custos.es>
2021-06-08 16:17:27 +01:00
..
files sysutils/zrepl: /var/run/zrepl should not be world-readable 2021-06-08 16:17:27 +01:00
distinfo
Makefile sysutils/zrepl: /var/run/zrepl should not be world-readable 2021-06-08 16:17:27 +01:00
pkg-descr
pkg-plist