Re: pid file security

To: StÃ©phane Glondu <glondu@debian.org>
Cc: debian-devel@lists.debian.org
Subject: Re: pid file security
From: Goswin von Brederlow <goswin-v-b@web.de>
Date: Wed, 05 May 2010 10:17:19 +0200
Message-id: <[🔎] 87vdb2bw4w.fsf@frosties.localdomain>
In-reply-to: <[🔎] 4BDFC2FF.5080609@debian.org> ("StÃ©phane Glondu"'s message of "Tue, 04 May 2010 08:47:27 +0200")
References: <[🔎] 20100504062525.GA12640@gnu.kitenet.net> <[🔎] 1272955187.17355.11.camel@hidalgo> <[🔎] 4BDFC2FF.5080609@debian.org>

StÃ©phane Glondu <glondu@debian.org> writes:

> Yves-Alexis Perez a Ã©crit :
>> And you usually need root access for invoke-rc.d or /etc/init.d scripts
>> (unless you have some kind of specific sudo permissions for that). So
>> you might be able to kill other process as well.
>
> I guess one (be it a human operator or a monit-like daemon) can be
> easily fooled into restarting a service without checking.
>
>
> Cheers,

If monit, runit, upstart, heartbeat or whatever is used to monitor
daemons does call stop+start then it is trivial. You are already the
user the daemon runs under (or you wouldn't have write permissions to
the pidfile) so just kill it. The next monitor run will then stop the
pid you wrote and restart the normal daemon wiping any trace of what you
did.

MfG
        Goswin

Reply to:

References:
- pid file security
  - From: Joey Hess <joeyh@debian.org>
- Re: pid file security
  - From: Yves-Alexis Perez <corsac@debian.org>
- Re: pid file security
  - From: Stéphane Glondu <glondu@debian.org>

Prev by Date: Re: bindv6only again
Next by Date: Re: Confused by .la file removal vs static linking support
Previous by thread: Re: pid file security
Next by thread: Re: pid file security
Index(es):
- Date
- Thread