Prevent accidental recursive Nix
This commit is contained in:
parent
48c192ca2d
commit
88b5d0c8e8
|
@ -994,7 +994,7 @@ static void daemonLoop(char * * argv)
|
|||
if (matchUser(user, group, trustedUsers))
|
||||
trusted = true;
|
||||
|
||||
if (!trusted && !matchUser(user, group, allowedUsers))
|
||||
if ((!trusted && !matchUser(user, group, allowedUsers)) || group == "nixbld")
|
||||
throw Error(format("user '%1%' is not allowed to connect to the Nix daemon") % user);
|
||||
|
||||
printInfo(format((string) "accepted connection from pid %1%, user %2%" + (trusted ? " (trusted)" : ""))
|
||||
|
|
Loading…
Reference in a new issue