From 82b6c49972a921dbdb10c17899dda94b0ae4763f Mon Sep 17 00:00:00 2001
From: Frank Steinborn <steinex@nognu.de>
Date: Thu, 23 Feb 2023 12:00:26 +0100
Subject: [PATCH] i2pd: restrict /etc/i2pd permissions

It's not a good idea to have /etc/i2pd/*.conf world-readable since
it may contain sensitive information.
---
 srcpkgs/i2pd/template | 4 +++-
 1 file changed, 3 insertions(+), 1 deletion(-)

diff --git a/srcpkgs/i2pd/template b/srcpkgs/i2pd/template
index 237ee28d4db..d0fc5060e88 100644
--- a/srcpkgs/i2pd/template
+++ b/srcpkgs/i2pd/template
@@ -19,7 +19,9 @@ conf_files="
  /etc/i2pd/tunnels.conf"
 system_accounts="_i2pd"
 _i2pd_homedir="/var/lib/i2pd"
-make_dirs="/var/lib/i2pd 0700 _i2pd _i2pd"
+make_dirs="
+ /var/lib/i2pd 0700 _i2pd _i2pd
+ /etc/i2pd 0750 root _i2pd"
 
 case "${XBPS_TARGET_MACHINE}" in
 	x86_64*) ;;