-
Notifications
You must be signed in to change notification settings - Fork 67
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
always wants to restart chrooted daemons on grsecurity kernels #46
Comments
For some reason it happens only with a grsec kernel. I use the last grsec kernel from jessie-backports:
|
The files |
I have a system running Debian stable, and needrestart keeps saying it needs to restart ssh. I'm not sure if my issue is related to this. |
@fenhl Do you a Grsecurity kernel ? If not, this is probably a separate issue. |
I haven't checked, but I assume it's running the default Linux kernel. |
I’m running grsec as well and I’m seeing this issue for dovecot instead. Postfix isrunning as well, but no erroneous reports pop up when I run needrestart. |
Could you please provide the output of |
This is the output for dovecot.
Oddly, |
Here is the output for the child process using a non-existing directory (not the Postfix master process):
|
The bug is triggered due to the following conditions:
I'm going to add an option to disable the filesystem check (at least for processes with a foreign root). This breaks reliableness but it is not really needed on GNU/Linux since removed filenames (due to upgrades) are ending with |
… a workaround for broken grsecurity kernels. Fixes github issue #46 by @jleroy @eigengrau.
On a fresh and up-to-date Debian 8 install, needrestart always ask to restart Postfix:
Systemd service output:
The text was updated successfully, but these errors were encountered: