From 414eaacd90c655aa6ae8ac5c0b74ece435b7061c Mon Sep 17 00:00:00 2001
From: Michael Hanselmann <public@hansmi.ch>
Date: Fri, 10 Jun 2016 22:46:28 +0200
Subject: unbound: Switch to non-privileged user

Until now unbound was always running as root by default. A DNS resolver can
easily run under a non-privileged user.

Signed-off-by: Michael Hanselmann <public@hansmi.ch>
---
 net/unbound/patches/001-conf.patch | 8 --------
 1 file changed, 8 deletions(-)

(limited to 'net/unbound/patches')

diff --git a/net/unbound/patches/001-conf.patch b/net/unbound/patches/001-conf.patch
index 352fe942c..3b612bcd1 100644
--- a/net/unbound/patches/001-conf.patch
+++ b/net/unbound/patches/001-conf.patch
@@ -89,14 +89,6 @@ index ff90e3b..5c20fdf 100644
  
  	# if given, a chroot(2) is done to the given directory.
  	# i.e. you can chroot to the working directory, for example,
-@@ -218,6 +233,7 @@ server:
- 	# and the given username is assumed. Default is user "unbound".
- 	# If you give "" no privileges are dropped.
- 	# username: "@UNBOUND_USERNAME@"
-+	username: ""
- 
- 	# the working directory. The relative files in this config are
- 	# relative to this directory. If you give "" the working directory
 @@ -266,12 +284,15 @@ server:
  	#	positive value: fetch that many targets opportunistically.
  	# Enclose the list of numbers between quotes ("").
-- 
cgit v1.2.3