unbound: Switch to non-privileged user

Until now unbound was always running as root by default. A DNS resolver can easily run under a non-privileged user. Signed-off-by: Michael Hanselmann <public@hansmi.ch>
2025-12-23 08:04:32 +04:00 · 2016-06-10 22:46:28 +02:00
parent 28945ea398
commit 414eaacd90
3 changed files with 9 additions and 9 deletions
--- a/net/unbound/patches/001-conf.patch
+++ b/net/unbound/patches/001-conf.patch
@@ -89,14 +89,6 @@ index ff90e3b..5c20fdf 100644
 
 	# if given, a chroot(2) is done to the given directory.
 	# i.e. you can chroot to the working directory, for example,
-@@ -218,6 +233,7 @@ server:
- 	# and the given username is assumed. Default is user "unbound".
- 	# If you give "" no privileges are dropped.
- 	# username: "@UNBOUND_USERNAME@"
-+	username: ""
- 
- 	# the working directory. The relative files in this config are
- 	# relative to this directory. If you give "" the working directory
@@ -266,12 +284,15 @@ server:
 	#	positive value: fetch that many targets opportunistically.
 	# Enclose the list of numbers between quotes ("").