Change the owner of kresd files to root:knot-resolver. This improves
behaviour for Fedora, where kresd can run under root (e.g. in Docker).
Otherwise, running kresd as root on Fedora would fail because of dropped
capabilities and attempting to access /var/lib/knot-resolver, which was
owned by knot-resolver.
This change makes it possible for both root (user) and knot-resolver
(group) to have the same permissions on these directories despite
dropped capabilities.
# SPDX-License-Identifier: CC0-1.0
# tmpfiles.d(5) directories for knot-resolver (kresd)
#Type Path Mode UID GID Age Argument
- d @run_dir@ 0750 @user@ @group@ - -
- d @systemd_work_dir@ 0750 @user@ @group@ - -
- d @systemd_cache_dir@ 0750 @user@ @group@ - -
+ d @run_dir@ 0770 root @group@ - -
+ d @systemd_work_dir@ 0770 root @group@ - -
+ d @systemd_cache_dir@ 0770 root @group@ - -
projects / thirdparty / knot-resolver.git / commitdiff
