* Guillem Jover <[email protected]>, 2015-11-19, 22:41:
I just noticed a pid file that only root can read. There is no sensitive information there, and it prevents normal users to check for the service status for example.

It would be nice if adequate could check for pid files to be world-readable.

Hmm, I'm not sure there's consensus that all pid files should be world-readable. Could you ask on debian-devel?

I'm not sure how it would match the pacakge with the pid filename though?

Maybe something like this?

dpkg -S $(readlink /proc/$(cat /path/to/pidfile)/exe)

But it's not pretty, and it would work only for the root user, and wouldn't work for scripts...

--
Jakub Wilk

Reply via email to