diff options
| author | Markus Uhlin <markus@nifty-networks.net> | 2025-11-01 14:54:36 +0100 |
|---|---|---|
| committer | Markus Uhlin <markus@nifty-networks.net> | 2025-11-01 14:54:36 +0100 |
| commit | aba90429b32f362f89cb53c115f9b67b54250b5b (patch) | |
| tree | e01ae045be47b59f3ab2dbae359200a9a8c681b8 | |
| parent | 3a64461c1dd4dd21f3d72ac7c2cdfe202096d07a (diff) | |
Added if block
| -rw-r--r-- | FICS/ficsmain.c | 13 |
1 files changed, 13 insertions, 0 deletions
diff --git a/FICS/ficsmain.c b/FICS/ficsmain.c index c9d6f35..bf5aafb 100644 --- a/FICS/ficsmain.c +++ b/FICS/ficsmain.c @@ -298,6 +298,19 @@ main(int argc, char *argv[]) settings_init(); settings_read_conf(FICS_SETTINGS); + if (is_super_user()) { + if (strncmp(FICS_PREFIX, "/home", 5) == 0) + errx(1, "Do not run as root"); + else if (read_the_group_permissions_file("/etc/group") != 0) + errx(1, "Failed to read the group permissions file"); + else if (fics_addgroup(settings_get("sysgroup")) != 0) + errx(1, "Failed to add the system group"); + else if (prep_dir_for_privdrop(FICS_PREFIX) != 0) + errx(1, "Dir preparation failed"); + else if (drop_root_privileges(FICS_PREFIX) != 0) + errx(1, "Privdrop failed"); + } + if (net_init(port)) { fprintf(stderr, "FICS: Network initialize failed on port %d.\n", port); |