Project

General

Profile

Actions
Copy link

Optimization #2373

closed

unix domain socket owner stays root when priviledges dropped

Added by Richard Sailer over 7 years ago. Updated 30 days ago.

Status:
Closed
Priority:
Normal
Assignee:
OISF Dev
Target version:
TBD
Effort:
Difficulty:
Label:

Description

related: https://github.com/OISF/suricata/pull/3052

macpas suggest to solve this via extending the permissions on the socket
from rw-r-----
to rw-rw---- .

I think the nicer way to solve the problem is by setting the socket owner to the new user before we drop priviledges

Related issues 1 (1 open0 closed)

Related to Suricata - Optimization #2337: give warning if permissions won't allow log reopen after dropping privsAssignedOISF DevActions
Actions
Copy link
 #1

Updated by Richard Sailer over 7 years ago

  • Status changed from New to Feedback
  • Assignee set to Richard Sailer
Actions
Copy link
 #2

Updated by Richard Sailer over 7 years ago

  • Subject changed from unix domain socket owner not updated when priviledges dropped to unix domain socket owner stays root when priviledges dropped
  • Description updated (diff)
Actions
Copy link
 #3

Updated by Richard Sailer over 7 years ago

  • Related to Optimization #2337: give warning if permissions won't allow log reopen after dropping privs added
Actions
Copy link
 #4

Updated by Andreas Herz over 7 years ago

  • Target version set to TBD
Actions
Copy link
 #5

Updated by Andreas Herz over 6 years ago

  • Assignee changed from Richard Sailer to OISF Dev
Actions
Copy link
 #6

Updated by Philippe Antoine 30 days ago

  • Tracker changed from Bug to Optimization
Actions
Copy link
 #7

Updated by Jason Ish 30 days ago

  • Status changed from Feedback to Closed

Closing. Looks like this was fixed in 2017 (commit: babe8a299e?). Anyways, it has not been an issue since at least 6.0.

Actions
Copy link

Also available in: Atom PDF