Access rights for system logs
mrunge at matthias-runge.de
Fri Feb 25 08:13:31 UTC 2011
-----BEGIN PGP SIGNED MESSAGE-----
currently, I'm the maintainer of logcheck. It parses system logs and
sends mails defined by regular expressions.
It's a package mostly adopted for debian. The README says, it is
recommended to create an own user and put it into adm group. This leads
to some problems, because fedoras system logs are currently owned
root:root and currently just readable by user.
Three possible solutions appear:
- - make logcheck owned by root (against package maintainers hint)
- - make the log reading program use the sticky option
- - change systems logs owners from root:root mode 600 to root:adm mode
640 (or something similar)
I would prefer the latter. What package owns "/var/log/messages"?
(Who to contact...?)
yum provides "*/messages" did not list it. Is it really unowned?
What do you think? Did I miss something? Has anybody of you another hint?
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.11 (GNU/Linux)
Comment: Using GnuPG with Fedora - http://enigmail.mozdev.org/
-----END PGP SIGNATURE-----
More information about the devel