From f791df4977fc3fb4ab4c884d187d1b4edd7ac744 Mon Sep 17 00:00:00 2001
From: Neil Alexander <neilalexander@users.noreply.github.com>
Date: Mon, 10 Dec 2018 00:00:23 +0000
Subject: [PATCH] Try to chmod 660 the admin socket if using AF_UNIX

---
 src/yggdrasil/admin.go | 5 +++++
 1 file changed, 5 insertions(+)

diff --git a/src/yggdrasil/admin.go b/src/yggdrasil/admin.go
index dea4577..50fdcf9 100644
--- a/src/yggdrasil/admin.go
+++ b/src/yggdrasil/admin.go
@@ -344,6 +344,11 @@ func (a *admin) listen() {
 		switch strings.ToLower(u.Scheme) {
 		case "unix":
 			a.listener, err = net.Listen("unix", a.listenaddr[7:])
+			if err == nil {
+				if err := os.Chmod(a.listenaddr[7:], 0660); err != nil {
+      		a.core.log.Printf("WARNING:", a.listenaddr[:7], "may have unsafe permissions!")
+      	}
+			}
 		case "tcp":
 			a.listener, err = net.Listen("tcp", u.Host)
 		default: