Re: pid file security

To: debian-devel@lists.debian.org
Subject: Re: pid file security
From: Salvo Tomaselli <tiposchi@tiscali.it>
Date: Tue, 4 May 2010 10:00:13 +0200
Message-id: <[🔎] 201005041000.13181.tiposchi@tiscali.it>
In-reply-to: <[🔎] 20100504062525.GA12640@gnu.kitenet.net>
References: <[🔎] 20100504062525.GA12640@gnu.kitenet.net>

On Tuesday 04 May 2010 08:25:25 Joey Hess wrote:
> Take a look in /var/run. Find a pid file that is owned by a non-root
> user. Now, look at the corresponding init script. What does it stop if
> that non-root user edited the pid file to contain '1'?

The fact that they are not owned by root doesn't mean you can edit them, they 
would probably be owned by a specific user for that daemon and will not have 
write access for others.
Have you found some with write permissions set to all?

Bye
-- 
Salvo Tomaselli

Reply to:

Follow-Ups:
- Re: pid file security
  - From: Philipp Kern <trash@philkern.de>

References:
- pid file security
  - From: Joey Hess <joeyh@debian.org>

Prev by Date: Re: Proposed changes to the Debian Machine Usage Policy (DMUP)
Next by Date: Re: Confused by .la file removal vs static linking support
Previous by thread: Re: pid file security
Next by thread: Re: pid file security
Index(es):
- Date
- Thread