JakeHillion/nixpkgs
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
a927709a35
nixpkgs/pkgs/tools
History
Rickard Nilsson a927709a35 openssh: Use the default privilege separation dir (/var/empty) 
If running NixOS inside a container where the host's root-owned files
and directories have been mapped to some other uid (like nobody), the
ssh daemon fails to start, producing this error message:

fatal: /nix/store/...-openssh-7.2p2/empty must be owned by root and not group or world-writable.

The reason for this is that when openssh is built, we explicitly set
`--with-privsep-path=$out/empty`. This commit removes that flag which
causes the default directory /var/empty to be used instead. Since NixOS'
activation script correctly sets up that directory, the ssh daemon now
also works within containers that have a non-root-owned nix store.
2016-07-14 20:54:06 +02:00
..
admin lxd: 2.0.0.rc4 -> 2.0.2 2016-06-19 20:21:03 +01:00
archivers unrar: 5.3.11 -> 5.4.2 2016-07-07 19:13:26 +02:00
audio gvolicon: c04cafb -> 31cf770 2016-06-17 11:46:19 +02:00
backup borgbackup: 1.0.4 -> 1.0.5 2016-07-08 20:52:39 +02:00
bluetooth bluez-tools: fix sha256 hash. 2016-05-21 16:37:40 +02:00
bootloaders/refind use the sourceforge mirrors everywhere 2016-02-28 12:07:42 +00:00
cd-dvd brasero: depend on hicolor_icon_theme 2016-07-09 13:04:32 +02:00
compression zstd: 0.7.2 -> 0.7.3 2016-07-08 22:09:43 +02:00
filesystems zerofree: 1.0.3 -> 1.0.4 2016-07-14 15:43:09 +02:00
graphics glmark2: 2014.03 -> 2015-06-11 (#16812) 2016-07-09 14:50:24 +02:00
inputmethods fcitx: refactor (#16858) 2016-07-11 17:50:22 +02:00
misc Merge branch 'staging' 2016-07-14 15:51:28 +02:00
networking openssh: Use the default privilege separation dir (/var/empty) 2016-07-14 20:54:06 +02:00
package-management nix-repl: 2015-09-07 -> 2016-02-28 2016-07-11 14:00:28 +02:00
security gnupg21: 2.1.12 -> 2.1.13 2016-06-23 00:26:48 -07:00
system stress-ng: 0.06.01 -> 0.06.11 2016-07-15 00:06:54 +08:00
text sift: fix hydra build fail (#16820) 2016-07-10 11:17:47 +02:00
typesetting Revert "stdenv: introduce baseHash() to replace stripHash()" 2016-06-25 14:25:58 +01:00
video Fix lots of fetchgit hashes (fallout from #15469) 2016-06-03 17:17:08 +03:00
virtualization Captialize meta.description of all packages 2016-06-20 13:55:52 +02:00
X11 xpra: 0.17.3 -> 0.17.4 (important fixes) 2016-06-30 14:48:05 +02:00