Improve robustness of owner/mode settings.
ClosedPublic
Actions

Authored by delphij on Oct 19 2017, 8:14 AM.

Tags

None

Referenced Files

	Unknown Object (File)
	Mon, Nov 25, 8:48 PM

	Unknown Object (File)
	Mon, Nov 25, 12:36 PM

	Unknown Object (File)
	Sun, Nov 24, 3:10 PM

	Unknown Object (File)
	Fri, Nov 22, 6:13 PM

	Unknown Object (File)
	Thu, Nov 21, 3:57 PM

	Unknown Object (File)
	Wed, Nov 20, 10:16 AM

	Unknown Object (File)
	Tue, Nov 5, 10:34 AM

	Unknown Object (File)
	Oct 18 2024, 10:30 AM

View All 92 Files

Subscribers

None

Details

Reviewers

matthew
mat

Group Reviewers

ports secteam

Commits

rP453157: Improve robustness of owner/mode settings.

Summary

Run fcgiwrap under target credential and only change ownership if the credential do not match the current socket_owner/group setting.
Use umask instead of chmod.
Use nobody/nogroup for default credentials instead of root.

Diff Detail

Repository

rP FreeBSD ports repository

Lint

Lint Not Applicable

Unit

Tests Not Applicable

Event Timeline

delphij created this revision.Oct 19 2017, 8:14 AM

Harbormaster completed remote builds in B12120: Diff 34139.Oct 19 2017, 8:14 AM

Looks ok to me, might want to explain a bit the umask thing, took me a few minutes to see what you were doing.

This revision is now accepted and ready to land.Oct 26 2017, 2:49 PM

Closed by commit rP453157: Improve robustness of owner/mode settings. (authored by delphij). · Explain WhyOct 30 2017, 5:59 AM

This revision was automatically updated to reflect the committed changes.

Revision Contents
Changeset List

Path

Size

head/

www/

fcgiwrap/

Makefile

2 lines

files/

fcgiwrap.in

23 lines

Diff 34446

View Options

head/www/fcgiwrap/Makefile