Difuse/packages
2
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity

memcached: use memcached user

Browse source 
This avoid using `nobody` as user since multiple services fallback to
this user, resulting in a security issue. The UID was taken from Gentoos
`acct-user` repository.

https://gitweb.gentoo.org/repo/gentoo.git/tree/acct-user/memcached/memcached-0-r1.ebuild

Signed-off-by: Paul Spooren <mail@aparcar.org>
This commit is contained in:
Paul Spooren 2021-08-24 13:31:19 -10:00 committed by Rosen Penev
parent 2d3409d5c4
commit c57abd4a56
3 changed files with 3 additions and 2 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

1
net/memcached/Makefile
View file

@ -32,6 +32,7 @@ define Package/memcached
DEPENDS:=+libevent2 +libpthread DEPENDS:=+libevent2 +libpthread
TITLE:=The high-performance, distributed memory object caching system TITLE:=The high-performance, distributed memory object caching system
URL:=https://memcached.org/ URL:=https://memcached.org/
USERID:=memcached=441:memcached=441
endef endef
define Package/memcached/description define Package/memcached/description

2
net/memcached/files/memcached.config
View file

@ -1,5 +1,5 @@
config memcached config memcached
option user 'nobody' option user 'memcached'
option maxconn '1024' option maxconn '1024'
option listen '0.0.0.0' option listen '0.0.0.0'
option port '11211' option port '11211'

2
net/memcached/files/memcached.init
View file

@ -12,7 +12,7 @@ start_instance () {
config_get port "$section" port config_get port "$section" port
config_get memory "$section" memory config_get memory "$section" memory
service_start /usr/bin/memcached -d -u ${user:-nobody} \ service_start /usr/bin/memcached -d -u ${user:-memcached} \
-c ${maxconn:-1024} -l ${listen:-0.0.0.0} \ -c ${maxconn:-1024} -l ${listen:-0.0.0.0} \
-p ${port:-11211} -U ${port:-11211} -m ${memory:-64} -p ${port:-11211} -U ${port:-11211} -m ${memory:-64}
} }