On Tue, 21 Mar 2017 14:46:48 +0300, Pavel Korovin <[email protected]> wrote:
> On 03/17, Daniel Jakots wrote: > > > > Here's a diff to update gitea to 1.1.0. ChangeLog is quite long and > > it says: > > > > Hi Daniel, > Works fine for me as well, thank you! Thanks for your report. > You forgot to allocate the user/group id for _gitea user in > $PORTSDIR/infrastructure/db/user.list, and 787 is already allocated: > > 787 _dnsdist _dnsdist net/dnsdist > > Please consider adding _gitea entry in user.list and change the gitea > userid in PLIST so there's no clash. Nice catch! _dnsdist was moved to another uid as it was easier to change dnsdist than gitea. > Do you use it with ssh? If not, do you consider the default > configuration should allow ssh connections? > I found the defaults quite misleading with system's default sshd, > gitea's SSH port set to 2222, _gitea home set to /nonexistent and > shell set to /sbin/nologin. ssh won't work this way. I'm not the maintainer so I don't have the last word. That said, IMHO the current state is fine but I don't have a strong opinion about it. > Maybe we'd better use OpenBSD's default port 22 and > @newgroup _gitea:788 > @newuser _gitea:788:_gitea:daemon:Gitea > Account:/var/gitea:/usr/local/bin/bash The thing is that it's less secure that way. Maybe adding a README about how to change to this ^, and leave the current state as is, is maybe a good compromise.
