Bug #2058: Suricata unable to remove PID file when privileges are dropped - Suricata - Open Information Security Foundation

Actions

Copy link

Bug #2058

closed

Suricata unable to remove PID file when privileges are dropped

Added by Jason Ish about 7 years ago. Updated about 7 years ago.

Status:

Rejected

Priority:

Normal

Assignee:

Jason Ish

Target version:

Affected Versions:

Effort:

Difficulty:

Label:

Description

The PID file is written out before privileges are dropped which makes Suricata unable to remove it at exit as the file is owned by root.

I'm not sure what the best approach is to fix it. Either:
- Delay writing of the pid file to PreRunPostPrivsDropInit, but still do the pid file check in the current place.
- Or keep pid file creating in its current stop and chown it to the user/group that Suricata is requested to run as.

History
Notes
Property changes

Actions

Copy link

Also available in: Atom PDF

Project

General

Profile

Suricata

Custom queries

Bug #2058

Suricata unable to remove PID file when privileges are dropped

Updated by Victor Julien about 7 years ago

Updated by Jason Ish about 7 years ago

Updated by Jason Ish about 7 years ago

Updated by Victor Julien about 7 years ago