From c1046a20db1b0f2e77e7a4c0193f6acccc700a21 Mon Sep 17 00:00:00 2001
From: bol-van <none@none.none>
Date: Sat, 10 May 2025 16:57:04 +0300
Subject: [PATCH] nfqws,tpws: sec_harden after daemonize

---
 nfq/nfqws.c | 3 ++-
 tpws/tpws.c | 3 ++-
 2 files changed, 4 insertions(+), 2 deletions(-)

diff --git a/nfq/nfqws.c b/nfq/nfqws.c
index ef0b7bcb..cc72efd0 100644
--- a/nfq/nfqws.c
+++ b/nfq/nfqws.c
@@ -297,7 +297,6 @@ static int nfq_main(void)
 		return 1;
 	}
 
-	sec_harden();
 	if (params.droproot && !droproot(params.uid, params.gid, params.gid_count) || !dropcaps())
 		goto err;
 	print_id();
@@ -309,6 +308,8 @@ static int nfq_main(void)
 
 	if (params.daemon) daemonize();
 
+	sec_harden();
+
 	if (Fpid)
 	{
 		if (fprintf(Fpid, "%d", getpid())<=0)
diff --git a/tpws/tpws.c b/tpws/tpws.c
index 34795fe1..9922a5a4 100644
--- a/tpws/tpws.c
+++ b/tpws/tpws.c
@@ -2135,7 +2135,6 @@ int main(int argc, char *argv[])
 	}
 
 	set_ulimit();
-	sec_harden();
 	if (params.droproot && !droproot(params.uid,params.gid,params.gid_count))
 		goto exiterr;
 #ifdef __linux__
@@ -2148,6 +2147,8 @@ int main(int argc, char *argv[])
 
 	if (params.daemon) daemonize();
 
+	sec_harden();
+
 	if (Fpid)
 	{
 		if (fprintf(Fpid, "%d", getpid())<=0)