diff options
| author | Theo de Raadt <deraadt@cvs.openbsd.org> | 2015-10-03 02:48:55 +0000 |
|---|---|---|
| committer | Theo de Raadt <deraadt@cvs.openbsd.org> | 2015-10-03 02:48:55 +0000 |
| commit | 8ccd69364cfe132f094b148d3289882ce814b26e (patch) | |
| tree | c9f9c2f5ce75e6c1446c4d744c8c7525d85c2bee /usr.sbin | |
| parent | 34c90b84b50c5197921be23eb460b80ddc851e72 (diff) | |
the ntp dns process only needs tame "dns rw" to operate. at least,
that's the case after kernel code got fixed to handle inet6 for dns...
Diffstat (limited to 'usr.sbin')
| -rw-r--r-- | usr.sbin/ntpd/ntp_dns.c | 5 |
1 files changed, 4 insertions, 1 deletions
diff --git a/usr.sbin/ntpd/ntp_dns.c b/usr.sbin/ntpd/ntp_dns.c index 4a63bffe558..eadb0b45869 100644 --- a/usr.sbin/ntpd/ntp_dns.c +++ b/usr.sbin/ntpd/ntp_dns.c @@ -1,4 +1,4 @@ -/* $OpenBSD: ntp_dns.c,v 1.10 2015/03/24 18:25:27 henning Exp $ */ +/* $OpenBSD: ntp_dns.c,v 1.11 2015/10/03 02:48:54 deraadt Exp $ */ /* * Copyright (c) 2003-2008 Henning Brauer <henning@openbsd.org> @@ -90,6 +90,9 @@ ntp_dns(int pipe_ntp[2], struct ntpd_conf *nconf, struct passwd *pw) fatal(NULL); imsg_init(ibuf_dns, pipe_ntp[1]); + if (tame("dns rw", NULL) == -1) + err(1, "tame"); + while (quit_dns == 0) { pfd[0].fd = ibuf_dns->fd; pfd[0].events = POLLIN; |