[Pkg-varnish-devel] umask problem in init.d script
Stig Sandbeck Mathisen
ssm at debian.org
Wed Jan 25 13:24:59 UTC 2012
Jan Carreras <inedit00 at gmail.com> writes:
> I've detected what I suspect that is a bug in debian varnishd package
> (3.0.2-1) installed with aptitude.
>
> I like to have my system secured, and that's why I have all my users
> with "umask 077".
>
> The problem here, is that varnishd creates a file as root suspecting
> that the permissions will be wordly readable. When tries to read the
> file again using the user "varnish" instead of "root", error happens.
> I understand that this is a problem of the script /etc/init.d/varnish
> since it does not provide the expected enviroment to the deamon. If
> I'm wrong, please let me know.
Thank you.
I'll add an "umask" statement to the init script for the next debian
release of varnish.
You should also perhaps look into "systemd", which will start your
services with a clean, reproducible environment every time (and respawn
them if they stop).
--
Stig Sandbeck Mathisen <ssm at debian.org>
More information about the Pkg-varnish-devel
mailing list