On 4/6/23 13:31, [email protected] wrote: > Hello, > > I'm new here. OpenBSD is one of many platforms that I support, and a > customer needs ZeroTier on OpenBSD, so I've taken a shot at packaging it > under the name net/zerotier-one. You can find it on GitHub for now. (I > know that OpenBSD uses CVS, but I haven't made time to learn that yet.) Thanks, this would be nice to have in ports. I've wanted to use it for a while after using tailscale/headscale for so long. > https://github.com/troyjfarrell/zerotier-one-openbsd-ports Please attach it as a tarball here. CVS isn't necessary on the mailing list. > Notes: > - The current version of ZeroTier-One is not (yet) FOSS, but uses the > Business Source License, so it will become FOSS in a few years. Is it allowed to distribute it to users as a binary/source package? > - I plan to add an rc.d script soon. > - I don't know whether this daemon needs its own user or not. How do I > decide that? I'm leaning toward yes, because it puts a secret API > token in /var/db/zerotier-one/authtoken.secret, which should probably > be accessible by the daemon.
If it is a daemon, it is generally a good idea for it to have its own user. The way I understand zerotier is that it would probably need to be started as root and then it would drop permissions later to its own user(?), someone can correct me if I am wrong. You can look at the headscale port for details on how to do that - https://cvsweb.openbsd.org/cgi-bin/cvsweb/ports/net/headscale/ Cheers, Aisha > > Feedback is welcome. Thanks! > > Troy >
