Currently dnsmasq will run as nobody as default. I'd like to suggest an enhancement to create a dedicated dnsmasq user and group and make the daemon run as that user and group instead of nobody for better isolation. What do you think? I can submit patches to make it work that way, just asking for an opinion first.
Hi, Sorry for the delay in responding to this. If people feel it would be helpful, I can certainly do it. I would have no problem taking patches, or I can do it myself when I get some free time.
Created attachment 268361 [details, diff] patch
I made the change in the tree. I used pkg_setup to add the user, and added a new conf.d file so that older ebuilds are not affected.