Am 26.09.2017 um 20:22 schrieb Ruben Safir:
If your not familiar with openrc then you can't me of much use with regard to this question. There are to things that will never see the light of day on my server, systemd, and freedesktop.org
I've seen already far too many security breakins of systemd.
WTF - stop bitching and try to *understand* what people explain you you fool defined "/run/mariadb.pid" which is *directly* below /run and the mysqld user has no business to write there (especially when you talk about security) - create a subfolder with the correct permission like "/run/mariadb" is your job and then the path is simply "/run/mariadb/mariadb.pid" or just switch to a non tmpfs so that you can create that folder with the permissions and it stays - why do you use /run/ at all when you are so against systemd/freedkestop.org - guess where it was invented
On Tue, Sep 26, 2017 at 08:19:32PM +0200, Reindl Harald wrote:
Am 26.09.2017 um 20:03 schrieb Ruben Safir:
170926 10:41:53 mysqld_safe mysqld from pid file /run/mariadb.pid ended drwxr-xr-x 16 root root 620 Sep 25 21:45 run
what do you recommend to do? The system is uniform
never write pid-files directly below /run make /run world-writeable is a terrible idea
no idea about openrc, but systemd has https://www.freedesktop.org/software/systemd/man/tmpfiles.d.html to create subfolders on tmpfs at boot with the correct permissions