Hi John!
On Mon, Apr 25, 2016 at 06:28:47PM +0200, John Crispin wrote:
>
>
> On 22/04/2016 06:26, Daniel Golle wrote:
> > Running dnsmasq in a dedicated user/group allows matching its outgoing
> > traffic more easily using iptables' owner match.
> > Add UID/GID to the package metadata and append
>
> please us an id between 0-999. ideally check what debian uses.
>
For most system services, with a very small number exceptions, debian
auto-assigns id < 500(?), and which service gets id depends on order of
package installation (which can be hassle with when trying to do network
filesystems)
On 22/04/2016 06:26, Daniel Golle wrote:
> Running dnsmasq in a dedicated user/group allows matching its outgoing
> traffic more easily using iptables' owner match.
> Add UID/GID to the package metadata and append the user/group
> parameters to the init script.
>
> Signed-off-by: Daniel Golle
>
Running dnsmasq in a dedicated user/group allows matching its outgoing
traffic more easily using iptables' owner match.
Add UID/GID to the package metadata and append the user/group
parameters to the init script.
Signed-off-by: Daniel Golle
---
package/network/services/dnsmasq/Makefile
