[syslog-ng] [Bug 31] New: sources are opened after dropping capabilities which prevents opening some
bugzilla at bugzilla.balabit.com
bugzilla at bugzilla.balabit.com
Tue Feb 3 12:56:59 CET 2009
https://bugzilla.balabit.com/show_bug.cgi?id=31
Summary: sources are opened after dropping capabilities which
prevents opening some
Product: syslog-ng
Version: 3.0.x
Platform: PC
OS/Version: Linux
Status: NEW
Severity: normal
Priority: unspecified
Component: syslog-ng
AssignedTo: bazsi at balabit.hu
ReportedBy: arekm at maven.pl
Type of the Report: regression
Estimated Hours: 0.0
mkdir /test/
mkfifo /test/fifo
chmod 0 /test
and use pipe('/test/fifo') as source. syslog-ng 3.0.1 will fail with permission denied because it can't access /test/fifo due to dropped capabilities.
This is real example from Linux Vserver based system where /vservers has always 0 permission.
The solution would be probably to not drop some caps until sources are opened.
--
Configure bugmail: https://bugzilla.balabit.com/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are watching all bug changes.
More information about the syslog-ng
mailing list