World writable pid and lock files.

To: debian-security@lists.debian.org
Subject: World writable pid and lock files.
From: helpermn <helpermn@gmail.com>
Date: Tue, 10 May 2011 15:40:22 +0200
Message-id: <[🔎] 05578BFF-44FC-41B3-9E8E-C11B5B9A6C11@gmail.com>

Hello!

I imagine why files listed below have 666 file mode bits set:
/var/run/checkers.pid
/var/run/vrrp.pid
/var/run/keepalived.pid
/var/run/starter.pid
/var/lock/subsys/ipsec

Files are created during startup of ipsec (pluto) and keepaliveddeamons.

I think thar leaving them world writable is security hole. For exampledelete or change of its content could confuses monit watching themrunning and restarting when they die.


Regards.

--
helpermn

Reply to:

Follow-Ups:
- Re: World writable pid and lock files.
  - From: Henrique de Moraes Holschuh <hmh@debian.org>

Prev by Date: This is not SPAM
Next by Date: Re: World writable pid and lock files.
Previous by thread: This is not SPAM
Next by thread: Re: World writable pid and lock files.
Index(es):
- Date
- Thread