services: bitlbee: Run as user "bitlbee".

Fixes <https://issues.guix.gnu.org/55450>. Fixes a bug introduced in 211fe3f66e6dfdaa64974931c458ab1d92afc182 whereby the inetd-spawned process would run as root (it would still run in a separate user namespace, with UID 1000 inside of it, but had the authority of root). * gnu/services/messaging.scm (bitlbee-shepherd-service): Pass #:user and #:group to 'make-inetd-constructor'. Remove "-u bitlbee" argument to BITLBEE*.
2022-05-16 15:29:06 +02:00 · 2022-05-16 15:29:06 +02:00 · ecfcdff23a
commit ecfcdff23a
parent 06a4a3634a
1 changed files with 2 additions and 2 deletions
--- a/gnu/services/messaging.scm
+++ b/gnu/services/messaging.scm
@ -855,14 +855,14 @@ string, you could instantiate a prosody service like this:
                (start #~(if (defined? 'make-inetd-constructor)

                             (make-inetd-constructor
-                              (list #$bitlbee* "-I"
-                                    "-u" "bitlbee" "-c" #$conf)
+                              (list #$bitlbee* "-I" "-c" #$conf)
                              (addrinfo:addr
                               (car (getaddrinfo #$interface
                                                 #$(number->string port)
                                                 (logior AI_NUMERICHOST
                                                         AI_NUMERICSERV))))
                              #:service-name-stem "bitlbee"
+                              #:user "bitlbee" #:group "bitlbee"

                              ;; Allow 'bitlbee-purple' to use libpurple plugins.
                              #:environment-variables