Bug#762896: Bug#763938: needrestart shouldn't checky only for daemons that need to be restarted

Sat, 01 Nov 2014 11:52:04 -0700 

Hi,
needrestart git HEAD has reached experimental. It contains a new notification feature to notify user sessions about obsolete processes. 

idea:
- needrestart runs (i.e. post-upgrade)
- root selects which daemons to restart
- root sees a list of user sessions with obsolete binaries

- root selects which sessions should be notified (not implemented, 
yet)... configurable simular to the restart option (all, select, none)
- user sessions get notified by scripts in /etc/needrestart/notify.d 
(shipping a write and a notify-send script)
- root get's a list of non-service and non-session process still 
required to be restarted (not implemented, yet).




Im looking for feedback on the idea and implementation - could you 
please give it a try?



Thanks!
Thomas

On 10/04/2014 02:23 AM, Thomas Liske wrote:

severity 763938 wishlist
tags 763938 - security
tags 762896 + upstream
merge 763938 762896
thanks


Hi,

On Sat 04 Oct 2014 01:48:16 AM CEST, Christoph Anton Mitterer wrote:

Now I guess the mainpurpose of needrestart is the security POV,
i.e. that people not only upgrade their stuff, but also restart it
when necessary.


ACK, the initial idea was to make a package which integrates into
apt/dpkg to handle service restart. Currently you have to use
checkrestart to get a detailed list but I agree with your (and Paul's)
suggestion.



btw: I mark this important+security since I feel the main idea of
needrestart is to notify the admin about remaining security issues,
even though packages have been upgraded.


Nope, the main idea was to restart affected services. After
needrestart's detection has become more advanced I agree that this
would be a usefull additional feature...


Since needrestart only notifies you about services/daemons I feel
that an important part of this job is not yet done.


...but it is not a important nor a security bug IMHO. I've merged this
bug with #762896.


Cheers,
Thomas




--

    ::  WWW:                         http://fiasko-nw.net/~thomas/  ::
   :::  Jabber:                   xmpp:tho...@jabber.fiasko-nw.net  :::
    ::  flickr:              http://www.flickr.com/photos/laugufe/  ::


--
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org























					Reply via email to