On 09/03/2022 11:24, Christian König wrote: > Am 09.03.22 um 11:10 schrieb Simon Ser: >> On Wednesday, March 9th, 2022 at 10:56, Pierre-Eric Pelloux-Prayer <pierre-eric.pelloux-prayer@xxxxxxx> wrote: >> >>> Would it be possible to include the app parameters as well? >> Can all processes read sysfs events? > > No, but application parameters are usually not secret. > >> There might be security implications here. The app parameters might >> contain sensitive information, like passwords or tokens. > > It's a well known security vulnerably to provide password etc.. as application parameter since everybody can read them through procfs. > >> Can't the uevent receiver query the kernel to get that info from the >> PID? > > I'm leaning also towards just providing the PID and not the application name. The information should be as short as possible. > Indeed you're both right. The PID + reading procfs should be enough. Thanks, Pierre-Eric
