mirror of
https://github.com/NixOS/nix
synced 2025-07-18 02:58:27 +02:00
Remove world-writability from per-user directories
'nix-daemon' now creates subdirectories for users when they first connect. Fixes #509 (CVE-2019-17365). Should also fix #3127.
This commit is contained in:
Eelco Dolstra
parent
4331eeb13d
commit
5a303093dc
11 changed files with 41 additions and 43 deletions
|
|
@ -13,3 +13,7 @@ cmp $TEST_ROOT/d1 $TEST_ROOT/d2
|
|||
nix-store --gc --max-freed 1K
|
||||
|
||||
killDaemon
|
||||
|
||||
user=$(whoami)
|
||||
[ -e $NIX_STATE_DIR/gcroots/per-user/$user ]
|
||||
[ -e $NIX_STATE_DIR/profiles/per-user/$user ]
|
||||
|
|
|
|||
Loading…
Add table
Add a link
Reference in a new issue