← Back to team overview

maria-discuss team mailing list archive

Re: mysqld_safe and pid files


Am 26.09.2017 um 20:22 schrieb Ruben Safir:
If your not familiar with openrc then you can't me of much use with
regard to this question.  There are to things that will never see the
light of day on my server, systemd, and freedesktop.org

I've seen already far too many security breakins of systemd.

WTF - stop bitching and try to *understand* what people explain you

you fool defined "/run/mariadb.pid" which is *directly* below /run and the mysqld user has no business to write there (especially when you talk about security) - create a subfolder with the correct permission like "/run/mariadb" is your job and then the path is simply "/run/mariadb/mariadb.pid"

or just switch to a non tmpfs so that you can create that folder with the permissions and it stays - why do you use /run/ at all when you are so against systemd/freedkestop.org - guess where it was invented

On Tue, Sep 26, 2017 at 08:19:32PM +0200, Reindl Harald wrote:

Am 26.09.2017 um 20:03 schrieb Ruben Safir:
170926 10:41:53 mysqld_safe mysqld from pid file /run/mariadb.pid ended
drwxr-xr-x  16 root root   620 Sep 25 21:45 run

what do you recommend to do?  The system is uniform

never write pid-files directly below /run
make /run world-writeable is a terrible idea

no idea about openrc, but systemd has
https://www.freedesktop.org/software/systemd/man/tmpfiles.d.html to
create subfolders on tmpfs at boot with the correct permissions

Follow ups