diff options
Diffstat (limited to 'abs/core/runit-scripts/runitscripts/services/funcd/run')
-rw-r--r-- | abs/core/runit-scripts/runitscripts/services/funcd/run | 20 |
1 files changed, 20 insertions, 0 deletions
diff --git a/abs/core/runit-scripts/runitscripts/services/funcd/run b/abs/core/runit-scripts/runitscripts/services/funcd/run new file mode 100644 index 0000000..adc57ae --- /dev/null +++ b/abs/core/runit-scripts/runitscripts/services/funcd/run @@ -0,0 +1,20 @@ +#!/bin/bash +setfacl --remove-all /etc/pki/certmaster/ca/certmaster.key + +for i in nobody http +do + setfacl -d -R -m u:$i:rX /etc/pki/certmaster/ + setfacl -R -m u:$i:rX /etc/pki/certmaster/ + + setfacl -R -m mask:rwx /etc/pki/certmaster/ + setfacl -R -m u:$i:rX /etc/pki/certmaster/ca/certmaster.key + + setfacl -d -R -m u:$i:rX /var/lib/certmaster + setfacl -R -m u:$i:rX /var/lib/certmaster + setfacl -d -R -m u:$i:rX /var/lib/certmaster/certmaster + setfacl -R -m u:$i:rX /var/lib/certmaster/certmaster + setfacl -d -R -m u:$i:rX /var/lib/certmaster/certmaster/certs + setfacl -R -m u:$i:rX /var/lib/certmaster/certmaster/certs +done + +DISPLAY=127.0.0.1:0 exec /usr/bin/funcd |