Re: World writable pid and lock files.
On Tue, 10 May 2011, Henrique de Moraes Holschuh <email@example.com> wrote:
On Tue, 10 May 2011, helpermn wrote:
I imagine why files listed below have 666 file mode bits set:
You could get the initscripts to send signals to any PID you want, so
yes, it is a nasty security issue.
So what is a solution? Could I/you/someone report this somewhere?
Maybe Debian bugs tracker?