mirror of
https://github.com/bitcoin/bitcoin.git
synced 2025-01-25 02:33:24 -03:00
Chgrp config dir to bitcoin in systemd service
Rather than making the config dir world-readable, which potentially leaks RPC credentials, the group of the directory is changed to the one the service is executed as.
This commit is contained in:
setpill
parent
aded0528f0
commit
639a416e37
1 changed files with 4 additions and 0 deletions
|
|
@ -19,6 +19,10 @@ ExecStart=/usr/bin/bitcoind -daemon \
|
|||
-conf=/etc/bitcoin/bitcoin.conf \
|
||||
-datadir=/var/lib/bitcoind
|
||||
|
||||
# Make sure the config directory is readable by the service user
|
||||
PermissionsStartOnly=true
|
||||
ExecStartPre=/bin/chgrp bitcoin /etc/bitcoin
|
||||
|
||||
# Process management
|
||||
####################
|
||||
|
||||
|
|
|
|||
Loading…
Add table
Reference in a new issue