X-Original-To: alpine-aports@mail.alpinelinux.org
Delivered-To: alpine-aports@mail.alpinelinux.org
Received: from mail.alpinelinux.org (dallas-a1.alpinelinux.org [127.0.0.1])
	by mail.alpinelinux.org (Postfix) with ESMTP id 919DBDC042C
	for <alpine-aports@mail.alpinelinux.org>; Wed, 26 Aug 2015 23:03:54 +0000 (UTC)
Received: from mail-pa0-f44.google.com (mail-pa0-f44.google.com [209.85.220.44])
	(using TLSv1 with cipher ECDHE-RSA-RC4-SHA (128/128 bits))
	(No client certificate requested)
	by mail.alpinelinux.org (Postfix) with ESMTPS id 5CE3FDC0138
	for <alpine-aports@lists.alpinelinux.org>; Wed, 26 Aug 2015 23:03:54 +0000 (UTC)
Received: by pacgr6 with SMTP id gr6so2421241pac.3
        for <alpine-aports@lists.alpinelinux.org>; Wed, 26 Aug 2015 16:03:53 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
        d=gmail.com; s=20120113;
        h=from:to:cc:subject:date:message-id;
        bh=E+V6QYzQNisgqJD/TTGL7LWRalBTNCDmq1PYZyiroF0=;
        b=qqIM00v61dCQe6bk2ABqjb5BEpmRj1MIEIaNAldWhGFiqXJuWmklfa5Vdr0plYA+hQ
         LTaH7tIConJAs7gK98Kw3+mNwQXA3k2qM/nJS1G2Y7X+e0vFRaVZkbpLq1yz3jz/Ia1q
         fHN5IqOSH3vKQmAqBakDsnfTfopugApZTS66ni6+iU51i0hbdEW2KiM0yvtM75J5eSGX
         Z1MqYJ2sG2T0ivjAtuHy5CcEEJYcN/5/WeIS/VUZh3R8hM2kga5ZWYvwmEvTQni8N3CS
         N7KZgE1QQNgThown70mSxBdrILz6WKKjAiCB194wTYr5egBBjTGdb5g6XCG82bpyrcyp
         WByw==
X-Received: by 10.68.137.7 with SMTP id qe7mr1688179pbb.103.1440630232966;
        Wed, 26 Aug 2015 16:03:52 -0700 (PDT)
Received: from twinpeaks.puffywall.priv.upward.io ([74.82.134.59])
        by smtp.gmail.com with ESMTPSA id hs11sm132323pdb.12.2015.08.26.16.03.52
        (version=TLS1_2 cipher=ECDHE-RSA-AES128-SHA bits=128/128);
        Wed, 26 Aug 2015 16:03:52 -0700 (PDT)
From: systmkor <systmkor@gmail.com>
To: alpine-aports@lists.alpinelinux.org
Cc: systmkor@gmail.com
Subject: [alpine-aports] [PATCH] main/openntpd: fixes privelege seperation defaults
Date: Wed, 26 Aug 2015 16:03:44 -0700
Message-Id: <1440630224-14407-1-git-send-email-systmkor@gmail.com>
X-Mailer: git-send-email 2.4.1
X-Virus-Scanned: ClamAV using ClamSMTP
X-Mailinglist: alpine-aports
Precedence: list
List-Id: Alpine Development <alpine-aports.lists.alpinelinux.org>
List-Unsubscribe: 
	<mailto:alpine-aports+unsubscribe@lists.alpinelinux.org?subject=unsubscribe>
List-Post: <mailto:alpine-aports@lists.alpinelinux.org>
List-Help: <mailto:alpine-aports+help@lists.alpinelinux.org?subject=help>
List-Subscribe: 
	<mailto:alpine-aports+subscribe@lists.alpinelinux.org?subject=subscribe>

 - compiles default privelege seperation user as ntp instead of _ntp
 - creates required chroot directory /var/empty in .pre-install script
---
 main/openntpd/APKBUILD             | 3 ++-
 main/openntpd/openntpd.pre-install | 1 +
 2 files changed, 3 insertions(+), 1 deletion(-)

diff --git a/main/openntpd/APKBUILD b/main/openntpd/APKBUILD
index d2de528..fd68e84 100644
--- a/main/openntpd/APKBUILD
+++ b/main/openntpd/APKBUILD
@@ -2,7 +2,7 @@
 pkgname=openntpd
 pkgver=5.7_p4
 _myver=${pkgver/_/}
-pkgrel=0
+pkgrel=1
 pkgdesc="Lightweight NTP server ported from OpenBSD"
 url=http://www.openntpd.org/
 install="$pkgname.pre-install $pkgname.pre-upgrade $pkgname.post-upgrade"
@@ -41,6 +41,7 @@ build() {
 		--localstatedir=/var \
 		--mandir=/usr/share/man \
 		--sysconfdir=/etc \
+		--with-privsep-user=ntp \
 		|| return 1
 	make || return 1
 }
diff --git a/main/openntpd/openntpd.pre-install b/main/openntpd/openntpd.pre-install
index 0b2be06..36778a9 100644
--- a/main/openntpd/openntpd.pre-install
+++ b/main/openntpd/openntpd.pre-install
@@ -2,6 +2,7 @@
 
 # this user should be included in alpine-baselayout-1.2.
 # included here for backward compability.
+mkdir -p /var/empty
 adduser -H -h /var/empty -s /sbin/nologin -D ntp  2>/dev/null
 
 exit 0
-- 
2.4.1



---
Unsubscribe:  alpine-aports+unsubscribe@lists.alpinelinux.org
Help:         alpine-aports+help@lists.alpinelinux.org
---