On 4/6/23 13:31, troy@entheossoft.com wrote:
> Hello,
>
> I'm new here. OpenBSD is one of many platforms that I support, and a
> customer needs ZeroTier on OpenBSD, so I've taken a shot at packaging it
> under the name net/zerotier-one. You can find it on GitHub for now. (I
> know that OpenBSD uses CVS, but I haven't made time to learn that yet.)
Thanks, this would be nice to have in ports. I've wanted to use it for a
while after using tailscale/headscale for so long.
> https://github.com/troyjfarrell/zerotier-one-openbsd-ports
Please attach it as a tarball here. CVS isn't necessary on the mailing list.
> Notes:
> - The current version of ZeroTier-One is not (yet) FOSS, but uses the
> Business Source License, so it will become FOSS in a few years.
Is it allowed to distribute it to users as a binary/source package?
> - I plan to add an rc.d script soon.
> - I don't know whether this daemon needs its own user or not. How do I
> decide that? I'm leaning toward yes, because it puts a secret API
> token in /var/db/zerotier-one/authtoken.secret, which should probably
> be accessible by the daemon.
If it is a daemon, it is generally a good idea for it to have its own
user. The way I understand zerotier is that it would probably need to be
started as root and then it would drop permissions later to its own
user(?), someone can correct me if I am wrong. You can look at the
headscale port for details on how to do that -
https://cvsweb.openbsd.org/cgi-bin/cvsweb/ports/net/headscale/
Cheers,
Aisha
>
> Feedback is welcome. Thanks!
>
> Troy
>
No comments:
Post a Comment