From 82b6c49972a921dbdb10c17899dda94b0ae4763f Mon Sep 17 00:00:00 2001 From: Frank Steinborn Date: Thu, 23 Feb 2023 12:00:26 +0100 Subject: [PATCH] i2pd: restrict /etc/i2pd permissions It's not a good idea to have /etc/i2pd/*.conf world-readable since it may contain sensitive information. --- srcpkgs/i2pd/template | 4 +++- 1 file changed, 3 insertions(+), 1 deletion(-) diff --git a/srcpkgs/i2pd/template b/srcpkgs/i2pd/template index 237ee28d4db..d0fc5060e88 100644 --- a/srcpkgs/i2pd/template +++ b/srcpkgs/i2pd/template @@ -19,7 +19,9 @@ conf_files=" /etc/i2pd/tunnels.conf" system_accounts="_i2pd" _i2pd_homedir="/var/lib/i2pd" -make_dirs="/var/lib/i2pd 0700 _i2pd _i2pd" +make_dirs=" + /var/lib/i2pd 0700 _i2pd _i2pd + /etc/i2pd 0750 root _i2pd" case "${XBPS_TARGET_MACHINE}" in x86_64*) ;;