Hosting Provided By

Re: [Snort-devel] Re: SIGHUP doesn't work

From: Steve G <linux_4ever(at)yahoo.com>
Date: Tue Sep 23 2003 - 09:32:59 EDT

IMHO, it doesn't. Maybe this is a case for capabilities. It won't solve the chroot problem, though. Also, now that I look in util.c, I see that if you are chroot'ing the daemon, it installs a different signal handler.

>So long it's even in the FAQ (6.19). It's amazing what

Right. I usually look at the man page where it explains the signal usage available to an admin.

>Need to HUP it? Don't use -u -g or -t.

Maybe following the lead of the SigChrootHupHandler is the best compromise? If the -u option is present, install an "I can't do this" signal handler.

Reviewing the current signal handlers...I see a couple of problems . Two of them call some non-reentrant functions. I think syslog, fprintf, puts are highly discouraged by the SUS for use in signal handlers. It looks like both of those signal handlers should be serialized and called from the main event loop.

-Steve Grubb

Do you Yahoo!?
Yahoo! SiteBuilder - Free, easy-to-use web site design software http://sitebuilder.yahoo.com

This sf.net email is sponsored by:ThinkGeek Welcome to geek heaven.
http://thinkgeek.com/sf

Snort-devel mailing list
Snort-devel@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/snort-devel Received on Tue Sep 23 09:44:47 2003

Do you need help?

This message: [ Message body ]
Next message: Steve G: "[Snort-devel] Results of a quick/light code review"
Previous message: Andreas Steinmetz: "[Snort-devel] missing include for snort-2.0.2"
In reply to Erek Adams: "Re: [Snort-devel] Re: SIGHUP doesn't work"
Next in thread: Jeff Nathan: "Re: [Snort-devel] Re: SIGHUP doesn't work"
Reply: Jeff Nathan: "Re: [Snort-devel] Re: SIGHUP doesn't work"

Contemporary messages sorted: [ By Date ] [ By Thread ] [ By Subject ] [ By Author ] [ By messages with attachments ]

This archive was generated by hypermail 2.1.8 : Wed Aug 23 2006 - 14:08:09 EDT