Re: [systemd-devel] Unprivileged user can kill root-owned processes by changing PID file and stopping service

2021-02-19 Thread Reindl Harald
Am 19.02.21 um 21:05 schrieb Frank Thommen: Lennart Poettering hat am 19.02.2021 15:44 geschrieben: On Fr, 19.02.21 15:12, Frank Thommen (systemd-de...@lists.drosera.ch) wrote: Dear all, I am experiencing the issue, that an unprivileged user can kill root-owned processes by

Re: [systemd-devel] Unprivileged user can kill root-owned processes by changing PID file and stopping service

2021-02-19 Thread Frank Thommen
> Lennart Poettering hat am 19.02.2021 15:44 > geschrieben: > > > On Fr, 19.02.21 15:12, Frank Thommen (systemd-de...@lists.drosera.ch) wrote: > > > Dear all, > > > > I am experiencing the issue, that an unprivileged user can kill > > root-owned processes by changing a service's PIDFile. >

Re: [systemd-devel] Unprivileged user can kill root-owned processes by changing PID file and stopping service

2021-02-19 Thread Lennart Poettering
On Fr, 19.02.21 15:12, Frank Thommen (systemd-de...@lists.drosera.ch) wrote: > Dear all, > > I am experiencing the issue, that an unprivileged user can kill > root-owned processes by changing a service's PIDFile. The file referenced by PIDFile= should not be under control of an unpriv user.

[systemd-devel] Unprivileged user can kill root-owned processes by changing PID file and stopping service

2021-02-19 Thread Frank Thommen
Dear all, I am experiencing the issue, that an unprivileged user can kill root-owned processes by changing a service's PIDFile. Situation: We are running a web service based on a software which is maintained by "external" developers. The service is running as an unprivileged user and the