Optimization #2373
closed
unix domain socket owner stays root when priviledges dropped
Added by Richard Sailer almost 8 years ago.
Updated 4 months ago.
Description
related: https://github.com/OISF/suricata/pull/3052
macpas suggest to solve this via extending the permissions on the socket
from rw-r-----
to rw-rw---- .
I think the nicer way to solve the problem is by setting the socket owner to the new user before we drop priviledges
Related issues
1 (1 open — 0 closed)
- Status changed from New to Feedback
- Assignee set to Richard Sailer
- Subject changed from unix domain socket owner not updated when priviledges dropped to unix domain socket owner stays root when priviledges dropped
- Description updated (diff)
- Related to Optimization #2337: give warning if permissions won't allow log reopen after dropping privs added
- Target version set to TBD
- Assignee changed from Richard Sailer to OISF Dev
- Tracker changed from Bug to Optimization
- Status changed from Feedback to Closed
Closing. Looks like this was fixed in 2017 (commit: babe8a299e?). Anyways, it has not been an issue since at least 6.0.
Also available in: Atom
PDF