netbird/plugins
0
0
Fork 0
mirror of https://github.com/netbirdio/plugins.git synced 2026-05-22 18:44:07 -07:00
Code Issues Packages Projects Releases Wiki Activity

Add run as root option

Browse Source
This commit is contained in:
Manus Freedom
2016-06-12 19:21:30 +02:00
parent 4ef2cb7211
commit 2e641cfa4e
3 changed files with 15 additions and 1 deletions
Download Patch File Download Diff File Expand all files Collapse all files
net/haproxy/src/opnsense/mvc/app/controllers/OPNsense/HAProxy/forms/main.xml
+7
View File
@@ -17,6 +17,13 @@
<label>NOTE: Define global parameters for the HAProxy service. They cannot be overriden.</label>
<type>info</type>
</field>
<field>
<id>haproxy.general.tuning.root</id>
<label>Run as root</label>
<type>checkbox</type>
<help><![CDATA[Enable or disable HAProxy running as root.<br/><div class="text-info"><b>NOTE:</b> Enabling root could be a security issue but it's required by some feature.</div>]]></help>
<advanced>true</advanced>
</field>
<field>
<id>haproxy.general.tuning.chroot</id>
<label>Secure mode (chroot)</label>
net/haproxy/src/opnsense/mvc/app/models/OPNsense/HAProxy/HAProxy.xml
+4
View File
@@ -10,6 +10,10 @@
<Required>Y</Required>
</enabled>
<tuning>
<root type="BooleanField">
<default>0</default>
<Required>Y</Required>
</root>
<chroot type="BooleanField">
<default>0</default>
<Required>Y</Required>
net/haproxy/src/opnsense/service/templates/OPNsense/HAProxy/haproxy.conf
+4 -1
View File
@@ -441,7 +441,10 @@
{# ############################### #}
global
#uid 80
{% if OPNsense.HAProxy.general.tuning.root != "1" %}
# NOTE: Could be a security issue, but required for some feature.
uid 80
{% endif %}
gid 80
{% if OPNsense.HAProxy.general.tuning.chroot == "1" %}
# NOTE: chroot prevents (most) local logging, you need to enable remote