Created attachment 268416 [details] net/fiche: drop privileges to $fiche_user in service The fiche port creates a fiche user and group, but it doesn't get used. It seems like it was intended to drop privileges in the service instead of running as root. The pidfile has to be created and given to $fiche_user in fiche_prestart as only root can write in /var/run/ directly. If the service was used before some files might belong to root, so notify users via an upgrade message, that they have to change owners for them. While here move USERS and GROUPS below the USES-block where it belongs. QA: * portlint: OK (looks fine.)
A commit in branch main references this bug: URL: https://cgit.FreeBSD.org/ports/commit/?id=5129bd54c165944ae86f4f677e54eb181fc5d446 commit 5129bd54c165944ae86f4f677e54eb181fc5d446 Author: Ryan Steinmetz <zi@FreeBSD.org> AuthorDate: 2026-02-28 14:52:34 +0000 Commit: Ryan Steinmetz <zi@FreeBSD.org> CommitDate: 2026-02-28 14:52:34 +0000 net/fiche: Fix dropping privs PR: 293501 Reported by: Benjamin Takacs <nimaje+fbz@bureaucracy.de> net/fiche/Makefile | 8 ++++---- net/fiche/files/fiche.in | 8 +++++++- net/fiche/files/pkg-message.in | 9 +++++++++ 3 files changed, 20 insertions(+), 5 deletions(-)