Bug 20696

Summary: services won't start if another process of the same name is running
Product: [Retired] Red Hat Linux Reporter: Eric Smith <spacewar>
Component: initscriptsAssignee: Bill Nottingham <notting>
Status: CLOSED DUPLICATE QA Contact: David Lawrence <dkl>
Severity: medium Docs Contact:
Priority: medium    
Version: 7.0CC: dr, jarno.huuskonen, rvokal, sysadmin
Target Milestone: ---Keywords: Security
Target Release: ---   
Hardware: All   
OS: Linux   
Whiteboard:
Fixed In Version: Doc Type: Bug Fix
Doc Text:
Story Points: ---
Clone Of: Environment:
Last Closed: 2000-11-13 23:59:32 UTC Type: ---
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: --- Target Upstream Version:
Embargoed:

Description Eric Smith 2000-11-12 03:51:49 UTC 
The deamon() function in /etc/rc.d/init.d/functions will not start a
service if there is an existing process with the same name, becuase
pidofproc() finds it.  For instance, a user of my system runs a custom
httpd process, completely independent of the installed Apache server.  If I
issue the command "/etc/rc.d/init.d/httpd restart", it will fail, without
giving any indication that there was a problem.

This is a possible Denial of Service attack.  An unprivileged user can
interfere with the operation of any system services managed through
initscripts that uses the deamon() function.

Suggested fix:  add an argument to daemon() and pidofproc() for the
expected UID of the process, perhaps defaulting to root.  Or, by default
allow it to match only UIDs under 100.
Comment 1 Eric Smith 2000-11-12 03:53:39 UTC 
*** Bug 20697 has been marked as a duplicate of this bug. ***
Comment 2 Eric Smith 2000-11-12 03:56:05 UTC 
For the example where this affects the Apache web server (httpd), it's not as
trivial to work around as one might expect.  The httpd script does a bunch of
work to determine the right arguments to pass to httpd, so I can't just type
"httpd" to start it up properly.
Comment 3 Bill Nottingham 2000-11-13 06:25:24 UTC 
*** Bug 19887 has been marked as a duplicate of this bug. ***
Comment 4 Bill Nottingham 2000-11-13 20:46:17 UTC 
*** Bug 19367 has been marked as a duplicate of this bug. ***
Comment 5 Jon Benson 2000-11-13 23:59:30 UTC 
Just tracking the UID is not good enough to solve the problem with sendmail. 
Please see my report under 19367.

At the moment I've duplicated the functions file and edited it to suit my needs
then linked it in to my sendmail script.   Not the greatest solution but at
least now I can restart sendmail.
Comment 6 Bill Nottingham 2001-01-30 22:08:29 UTC 

*** This bug has been marked as a duplicate of 17244 ***