Make qrexec_daemon socket accessible.

Set restructive umask after socket creation.
2011-03-04 17:41:54 +01:00 · 2011-03-04 17:41:54 +01:00 · bb0507c89a
commit bb0507c89a
parent b899bfc9ba
1 changed files with 2 additions and 1 deletions
--- a/qrexec/qrexec_daemon.c
+++ b/qrexec/qrexec_daemon.c
@ -72,7 +72,6 @@ void init(int xid)
 		 "/var/log/qubes/qrexec.%d.log", xid);
 	umask(0007);
 	logfd = open(dbg_log, O_WRONLY | O_CREAT | O_TRUNC, 0640);
-	umask(0077);
 	dup2(logfd, 1);
 	dup2(logfd, 2);

@ -82,7 +81,9 @@ void init(int xid)
 		exit(1);
 	}

+	umask(0);
 	server_fd = get_server_socket(xid);
+	umask(0077);
 	peer_client_init(xid, REXEC_PORT);
 	setuid(getuid());
 	signal(SIGPIPE, SIG_IGN);