Re the 777 permissions on the UNIX socket created in server.py - I guess it would make sense to allow the UNIX socket permissions to be hardened to be more limited. Seems like a desirable feature but I don't think this code path is used in the scope of this MIR (cherrypy3).
I did a read through the cherrypy3 usage of cheroot and AFAICT all of its usage of cheroot is via the network socket support rather than the UNIX socket support (socket_host/port configuration options).
@ccdm94
Re the 777 permissions on the UNIX socket created in server.py - I guess it would make sense to allow the UNIX socket permissions to be hardened to be more limited. Seems like a desirable feature but I don't think this code path is used in the scope of this MIR (cherrypy3).
I did a read through the cherrypy3 usage of cheroot and AFAICT all of its usage of cheroot is via the network socket support rather than the UNIX socket support (socket_host/port configuration options).