TheArchive/tailscale
1
0
Fork 0
mirror of https://github.com/tailscale/tailscale.git synced 2024-11-25 19:15:34 +00:00
Code Issues Packages Projects Releases Wiki Activity
5611f290eb
tailscale/ipn
History
Brad Fitzpatrick 5611f290eb ipn, ipnserver: only require sudo on Linux for mutable CLI actions 
This partially reverts d6e9fb1df0, which modified the permissions
on the tailscaled Unix socket and thus required "sudo tailscale" even
for "tailscale status".

Instead, open the permissions back up (on Linux only) but have the
server look at the peer creds and only permit read-only actions unless
you're root.

In the future we'll also have a group that can do mutable actions.

On OpenBSD and FreeBSD, the permissions on the socket remain locked
down to 0600 from d6e9fb1df0.

Signed-off-by: Brad Fitzpatrick <bradfitz@tailscale.com>
2021-01-15 10:13:00 -08:00
..
ipnserver ipn, ipnserver: only require sudo on Linux for mutable CLI actions 2021-01-15 10:13:00 -08:00
ipnstate cmd/tailscale: change formatting of "tailscale status" 2021-01-10 12:11:22 -08:00
policy ipn, ipn/policy: filter portlist to a short list of "interesting" ports 2020-04-01 10:03:44 -07:00
backend.go ipn, ipn/ipnserver: add IPN state for server in use, handle explicitly 2020-11-02 15:25:11 -08:00
doc.go Move Linux client & common packages into a public repo. 2020-02-09 09:32:57 -08:00
fake_test.go cmd/tailscale/cli: add basic 'down' subcommand 2020-08-25 18:54:29 -07:00
handle.go all: replace wgcfg.IP and wgcfg.CIDR with netaddr types 2020-12-28 13:00:42 -08:00
local_test.go Add names to test cases in ipn/local_test.go. 2021-01-08 10:23:32 -08:00
local.go ipn: only send services in Hostinfo if Tailnet has opted-in to services collection (#1107) 2021-01-11 17:24:32 -05:00
loglines_test.go cmd/tailscaled, wgengine/netstack: add start of gvisor userspace netstack work 2021-01-11 09:31:14 -08:00
message_test.go ipn, ipnserver: only require sudo on Linux for mutable CLI actions 2021-01-15 10:13:00 -08:00
message.go ipn, ipnserver: only require sudo on Linux for mutable CLI actions 2021-01-15 10:13:00 -08:00
prefs_clone.go all: replace wgcfg.IP and wgcfg.CIDR with netaddr types 2020-12-28 13:00:42 -08:00
prefs_test.go wgkey: new package 2020-12-30 17:33:02 -08:00
prefs.go all: adjust Unix permissions for those without umasks 2021-01-11 19:24:41 -08:00
store_test.go Add tstest.PanicOnLog(), and fix various problems detected by this. 2020-05-13 23:12:35 -04:00
store.go wgkey: new package 2020-12-30 17:33:02 -08:00