IntenseWebs/LACT
3
0
Fork 0
mirror of https://github.com/ilya-zlobintsev/LACT.git synced 2025-02-25 18:55:26 -06:00
Code Issues Packages Projects Releases Wiki Activity

Restrict socket access

Browse Source
This commit is contained in:
Ilya Zlobintsev 2021-02-08 16:18:07 +02:00
parent 024bbc915e
commit 50d8d1a8c7
2 changed files with 9 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

2
README.md
View File

@ -34,3 +34,5 @@ Enable and start the service (otherwise you won't be able to change any settings
sudo systemctl enable --now lactd
```
You can now use the application.
Note: only members of the group `wheel` can change settings.

8
daemon/src/lib.rs
View File

@ -54,10 +54,16 @@ impl Daemon {
let listener = UnixListener::bind(SOCK_PATH).unwrap();
Command::new("chmod")
.arg("666")
.arg("664")
.arg(SOCK_PATH)
.output()
.expect("Failed to chmod");
Command::new("chown")
.arg("nobody:wheel")
.arg(SOCK_PATH)
.output()
.expect("Failed to chown");
let config_path = PathBuf::from("/etc/lact.json");
let mut config = if unprivileged {