JakeHillion/nixpkgs
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

powerdns: removed PrivateTmp=true in serviceConfig

Browse Source 
As discussed in #18718 PrivateTmp is unnecessary because powerdns is
chrooted to /var/lib/powerdns.

I also added myself as co-maintainer.
This commit is contained in:
Anmol Sethi 2016-10-01 11:48:09 -04:00
parent 98a8146428
commit 489ca7e5c0
No known key found for this signature in database
GPG Key ID: 427400A70839B0ED
3 changed files with 2 additions and 2 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

1
lib/maintainers.nix
View File

@ -290,6 +290,7 @@
nckx = "Tobias Geerinckx-Rice <tobias.geerinckx.rice@gmail.com>"; nckx = "Tobias Geerinckx-Rice <tobias.geerinckx.rice@gmail.com>";
nequissimus = "Tim Steinbach <tim@nequissimus.com>"; nequissimus = "Tim Steinbach <tim@nequissimus.com>";
nfjinjing = "Jinjing Wang <nfjinjing@gmail.com>"; nfjinjing = "Jinjing Wang <nfjinjing@gmail.com>";
nhooyr = "Anmol Sethi <anmol@aubble.com>";
nico202 = "Nicolò Balzarotti <anothersms@gmail.com>"; nico202 = "Nicolò Balzarotti <anothersms@gmail.com>";
notthemessiah = "Brian Cohen <brian.cohen.88@gmail.com>"; notthemessiah = "Brian Cohen <brian.cohen.88@gmail.com>";
NikolaMandic = "Ratko Mladic <nikola@mandic.email>"; NikolaMandic = "Ratko Mladic <nikola@mandic.email>";

1
nixos/modules/services/networking/powerdns.nix
View File

@ -35,7 +35,6 @@ in {
Restart="on-failure"; Restart="on-failure";
RestartSec="1"; RestartSec="1";
StartLimitInterval="0"; StartLimitInterval="0";
PrivateTmp=true;
PrivateDevices=true; PrivateDevices=true;
CapabilityBoundingSet="CAP_CHOWN CAP_NET_BIND_SERVICE CAP_SETGID CAP_SETUID CAP_SYS_CHROOT"; CapabilityBoundingSet="CAP_CHOWN CAP_NET_BIND_SERVICE CAP_SETGID CAP_SETUID CAP_SYS_CHROOT";
NoNewPrivileges=true; NoNewPrivileges=true;

2
pkgs/servers/dns/powerdns/default.nix
View File

@ -36,6 +36,6 @@ stdenv.mkDerivation rec {
platforms = platforms.linux; platforms = platforms.linux;
# cannot find postgresql libs on macos x # cannot find postgresql libs on macos x
license = licenses.gpl2; license = licenses.gpl2;
maintainers = [ maintainers.mic92 ]; maintainers = [ maintainers.mic92 maintainers.nhooyr ];
}; };
} }