Mercurial > dovecot > core-2.2
changeset 10320:4933856b86d7 HEAD
anvil, config, log, ssl-params: Drop privileges as configured.
author | Timo Sirainen <tss@iki.fi> |
---|---|
date | Thu, 12 Nov 2009 18:51:08 -0500 |
parents | 506fba223006 |
children | 2a2261f5a0be |
files | src/anvil/main.c src/config/main.c src/log/main.c src/ssl-params/main.c |
diffstat | 4 files changed, 20 insertions(+), 4 deletions(-) [+] |
line wrap: on
line diff
--- a/src/anvil/main.c Thu Nov 12 18:37:57 2009 -0500 +++ b/src/anvil/main.c Thu Nov 12 18:51:08 2009 -0500 @@ -3,6 +3,7 @@ #include "common.h" #include "array.h" #include "env-util.h" +#include "restrict-access.h" #include "master-service.h" #include "master-interface.h" #include "connect-limit.h" @@ -24,8 +25,11 @@ master_service = master_service_init("anvil", 0, &argc, &argv, NULL); if (master_getopt(master_service) > 0) return FATAL_DEFAULT; + master_service_init_log(master_service, "anvil: "); - master_service_init_log(master_service, "anvil: "); + restrict_access_by_env(NULL, FALSE); + restrict_access_allow_coredumps(TRUE); + master_service_init_finish(master_service); connect_limit = connect_limit_init(); penalty = penalty_init();
--- a/src/config/main.c Thu Nov 12 18:37:57 2009 -0500 +++ b/src/config/main.c Thu Nov 12 18:51:08 2009 -0500 @@ -3,6 +3,7 @@ #include "lib.h" #include "array.h" #include "env-util.h" +#include "restrict-access.h" #include "master-service.h" #include "config-connection.h" #include "config-parser.h" @@ -20,8 +21,11 @@ master_service = master_service_init("config", 0, &argc, &argv, NULL); if (master_getopt(master_service) > 0) return FATAL_DEFAULT; + master_service_init_log(master_service, "config: "); - master_service_init_log(master_service, "config: "); + restrict_access_by_env(NULL, FALSE); + restrict_access_allow_coredumps(TRUE); + master_service_init_finish(master_service); config_parse_load_modules();
--- a/src/log/main.c Thu Nov 12 18:37:57 2009 -0500 +++ b/src/log/main.c Thu Nov 12 18:51:08 2009 -0500 @@ -2,6 +2,7 @@ #include "common.h" #include "lib-signals.h" +#include "restrict-access.h" #include "master-interface.h" #include "master-service.h" #include "master-service-settings.h" @@ -51,8 +52,11 @@ if (master_service_settings_read_simple(master_service, NULL, &error) < 0) i_fatal("Error reading configuration: %s", error); + master_service_init_log(master_service, "log: "); - master_service_init_log(master_service, "log: "); + restrict_access_by_env(NULL, FALSE); + restrict_access_allow_coredumps(TRUE); + master_service_init_finish(master_service); /* logging should never die if there are some clients */
--- a/src/ssl-params/main.c Thu Nov 12 18:37:57 2009 -0500 +++ b/src/ssl-params/main.c Thu Nov 12 18:51:08 2009 -0500 @@ -4,6 +4,7 @@ #include "lib-signals.h" #include "array.h" #include "ostream.h" +#include "restrict-access.h" #include "master-service.h" #include "ssl-params-settings.h" #include "ssl-params.h" @@ -122,8 +123,11 @@ if (master_getopt(master_service) > 0) return FATAL_DEFAULT; + set = ssl_params_settings_read(master_service); - set = ssl_params_settings_read(master_service); + restrict_access_by_env(NULL, FALSE); + restrict_access_allow_coredumps(TRUE); + master_service_init_finish(master_service); #ifndef HAVE_SSL