diff options
Diffstat (limited to 'data.c')
| -rw-r--r-- | data.c | 16 |
1 files changed, 10 insertions, 6 deletions
@@ -86,15 +86,19 @@ int srv_open(char *basedir, int auto_upgrade) if (error != NULL) srv_log(error); -/* disabled temporarily; messages can't be sent (libcurl issue?) */ -#if 0 #ifdef __OpenBSD__ srv_debug(2, xs_fmt("Calling unveil()")); - unveil(basedir, "rwc"); - unveil("/usr/sbin", "x"); - unveil(NULL, NULL); + unveil(basedir, "rwc"); + unveil("/usr/sbin/sendmail", "x"); + unveil("/etc/resolv.conf", "r"); + unveil("/etc/hosts", "r"); + unveil("/etc/ssl/openssl.cnf", "r"); + unveil("/etc/ssl/cert.pem", "r"); + unveil("/usr/share/zoneinfo", "r"); + unveil(NULL, NULL); + srv_debug(2, xs_fmt("Calling pledge()")); + pledge("stdio rpath wpath cpath flock inet proc exec dns", NULL); #endif /* __OpenBSD__ */ -#endif return ret; } |