F11 httpd - non-root "service httpd status" reports wrong

Michael Cronenworth mike at cchtml.com
Fri Sep 4 13:12:29 UTC 2009


Jason Farrell on 09/04/2009 06:42 AM wrote:
> 
> Well then, if everybody seems to agree that it's worth the trouble for
> all pidfiles to be world-readable, and for 'service foo status' to
> always work non-root, then httpd is hardly alone, so there's a bunch
> more bugs to file against:

The "security" put in place by having *.pid files 0600 is negated by
using "ps" so I don't see how it can be called security. It seems like a
case of security by obscurity to me.




More information about the fedora-test-list mailing list