Restricted log file permissions to 0600.

Added 'starting' log message to UDP proxy.
yurivict · May 17, 2015 · 8dade7e · 8dade7e
1 parent 9ff6cbb
commit 8dade7e
Show file tree

Hide file tree

Showing 4 changed files with 17 additions and 0 deletions.
diff --git a/tiny-dhcp-server.py b/tiny-dhcp-server.py
@@ -108,6 +108,7 @@ def log_discard(what):
  sys.exit("Only root can run tiny-dhcp-server")
 
 ## starting
+tu.mk_file_rw(logfile())
 log('starting')
 
 ## signals

diff --git a/tiny-udp-anti-nat.py b/tiny-udp-anti-nat.py
@@ -172,6 +172,7 @@ def update_rev(pkt):
  sys.exit("Only root can run tiny-udp-anti-nat")
 
 ## starting
+tu.mk_file_rw(logfile())
 log('starting (divert-ip=%s, divert-port=%s)' % (arg_clnt_divert_ip, arg_clnt_divert_port))
 
 ## signals

diff --git a/tiny-udp-proxy.py b/tiny-udp-proxy.py
@@ -370,6 +370,17 @@ def create_sock_raw_ip():
 ## MAIN cycle
 ##
 
+## permissions
+if not os.geteuid()==0:
+ sys.exit("Only root can run tiny-udp-proxy")
+
+## starting
+tu.mk_file_rw(logfile())
+log('starting')
+
+## signals
+tu.handle_signals(lambda msg: log(msg))
+
 # run cmd-up if any
 if arg_cmd_up != None:
  res = os.system(arg_cmd_up)

diff --git a/tiny_utils.py b/tiny_utils.py
@@ -14,6 +14,10 @@
 def tm_log():
  return datetime.datetime.now().strftime('[%Y-%m-%d %H:%M:%S %Z]')
 
+def mk_file_rw(fname):
+ fh = os.open ("qq1.junk", os.O_CREAT, 0600)
+ os.close(fh)
+
 def drop_privileges3(uid_name, gid_name, files):
  # get the uid/gid from the name
  new_uid = pwd.getpwnam(uid_name).pw_uid