From 2ff054d0419535a9422a957d50491ed119d6eb73 Mon Sep 17 00:00:00 2001
From: ShadowNinja <shadowninja@minetest.net>
Date: Sun, 9 Oct 2016 14:36:22 -0400
Subject: [PATCH] Enable mod security by default
---
builtin/settingtypes.txt | 2 +-
minetest.conf.example | 2 +-
src/defaultsettings.cpp | 2 +-
3 files changed, 3 insertions(+), 3 deletions(-)
diff --git a/builtin/settingtypes.txt b/builtin/settingtypes.txt
index 0a6c21a46..9b5f386e0 100644
--- a/builtin/settingtypes.txt
+++ b/builtin/settingtypes.txt
@@ -1161,7 +1161,7 @@ mgvalleys_np_inter_valley_slope (Valley Slope) noise_params 0.5, 0.5, (128, 128,
[*Security]
# Prevent mods from doing insecure things like running shell commands.
-secure.enable_security (Enable mod security) bool false
+secure.enable_security (Enable mod security) bool true
# Comma-separated list of trusted mods that are allowed to access insecure
# functions even when mod security is on (via request_insecure_environment()).
diff --git a/minetest.conf.example b/minetest.conf.example
index 465e1d069..e24d3a384 100644
--- a/minetest.conf.example
+++ b/minetest.conf.example
@@ -1507,7 +1507,7 @@
# Prevent mods from doing insecure things like running shell commands.
# type: bool
-# secure.enable_security = false
+# secure.enable_security = true
# Comma-separated list of trusted mods that are allowed to access insecure
# functions even when mod security is on (via request_insecure_environment()).
diff --git a/src/defaultsettings.cpp b/src/defaultsettings.cpp
index 00c233a42..522aa8481 100644
--- a/src/defaultsettings.cpp
+++ b/src/defaultsettings.cpp
@@ -301,7 +301,7 @@ void set_default_settings(Settings *settings)
settings->setDefault("emergequeue_limit_diskonly", "32");
settings->setDefault("emergequeue_limit_generate", "32");
settings->setDefault("num_emerge_threads", "1");
- settings->setDefault("secure.enable_security", "false");
+ settings->setDefault("secure.enable_security", "true");
settings->setDefault("secure.trusted_mods", "");
settings->setDefault("secure.http_mods", "");
--
GitLab