It seems that this was partly my mistake, as the permissions of the fifo file were wrong. But this means that rsyslog opened the fifo before dropping privileges and was thus able to open it as root. When the HUP signal is sent, reopening the fifo fails because rsyslog is no longer run as root.
This is a known issue, and there's more info here: http://wiki.rsyslog.com/index.php/Security#Dropping_Privileges. It seems that the privilege dropping has not been implemented in a very secure manner. -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/672953 Title: rsyslog stops writing to fifo on HUP -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs