Overview

File icecast-2.3.1_runas_icecast_user.patch of Package icecast

Index: conf/icecast_minimal.xml.in
===================================================================
--- conf/icecast_minimal.xml.in.orig
+++ conf/icecast_minimal.xml.in
@@ -32,4 +32,19 @@
         <errorlog>error.log</errorlog>
       	<loglevel>3</loglevel> <!-- 4 Debug, 3 Info, 2 Warn, 1 Error -->
     </logging>
+    <security>
+        <chroot>0</chroot>
+        <!--
+          Note from the packager:
+          For security reasons you should not run the icecast server as root.
+          SUSE adds a icecast user and group for this purpose.
+
+          If you change the user/group here you need to change the ownership
+          of the @localstatedir@/log/@PACKAGE@ aswell
+         -->
+        <changeowner>
+            <user>icecast</user>
+            <group>icecast</group>
+        </changeowner>
+    </security>
 </icecast>
Index: conf/icecast_shoutcast_compat.xml.in
===================================================================
--- conf/icecast_shoutcast_compat.xml.in.orig
+++ conf/icecast_shoutcast_compat.xml.in
@@ -56,5 +56,17 @@
     </logging>
     <security>
         <chroot>0</chroot>
+        <!--
+          Note from the packager:
+          For security reasons you should not run the icecast server as root.
+          SUSE adds a icecast user and group for this purpose.
+
+          If you change the user/group here you need to change the ownership
+          of the @localstatedir@/log/@PACKAGE@ aswell
+         -->
+        <changeowner>
+            <user>icecast</user>
+            <group>icecast</group>
+        </changeowner>
     </security>
 </icecast>
Index: conf/icecast_urlauth.xml.in
===================================================================
--- conf/icecast_urlauth.xml.in.orig
+++ conf/icecast_urlauth.xml.in
@@ -45,5 +45,17 @@
     </logging>
     <security>
         <chroot>0</chroot>
+        <!--
+          Note from the packager:
+          For security reasons you should not run the icecast server as root.
+          SUSE adds a icecast user and group for this purpose.
+
+          If you change the user/group here you need to change the ownership
+          of the @localstatedir@/log/@PACKAGE@ aswell
+         -->
+        <changeowner>
+            <user>icecast</user>
+            <group>icecast</group>
+        </changeowner>
     </security>
 </icecast>
Index: conf/icecast.xml.in
===================================================================
--- conf/icecast.xml.in.orig
+++ conf/icecast.xml.in
@@ -172,10 +172,16 @@
     <security>
         <chroot>0</chroot>
         <!--
+          Note from the packager:
+          For security reasons you should not run the icecast server as root.
+          SUSE adds a icecast user and group for this purpose.
+
+          If you change the user/group here you need to change the ownership
+          of the @localstatedir@/log/@PACKAGE@ aswell
+         -->
         <changeowner>
-            <user>nobody</user>
-            <group>nogroup</group>
+            <user>icecast</user>
+            <group>icecast</group>
         </changeowner>
-        -->
     </security>
 </icecast>
openSUSE Build Service is sponsored by
Places