Access rights for system logs

Matthias Runge mrunge at matthias-runge.de
Fri Feb 25 08:13:31 UTC 2011


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Hi,

currently, I'm the maintainer of logcheck. It parses system logs and
sends mails defined by regular expressions.

It's a package mostly adopted for debian. The README says, it is
recommended to create an own user and put it into adm group. This leads
to some problems, because fedoras system logs are currently owned
root:root and currently just readable by user.

Three possible solutions appear:

- - make logcheck owned by root (against package maintainers hint)
- - make the log reading program use the sticky option
- - change systems logs owners from root:root mode 600 to root:adm mode
640 (or something similar)

I would prefer the latter. What package owns "/var/log/messages"?
(Who to contact...?)

yum provides "*/messages" did not list it. Is it really unowned?

What do you think? Did I miss something? Has anybody of you another hint?

Thanks,
Matthias

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.11 (GNU/Linux)
Comment: Using GnuPG with Fedora - http://enigmail.mozdev.org/

iQEcBAEBAgAGBQJNZ2SoAAoJEOnz8qQwcaIWTI0H/0P3rL7bBhcbfLP85wKHt8TK
STEv8xQSu8c1vxUZdr/acyOM/18iTfEl/rH9odj07qoHvwiuUl7ZD+GRgLlI/Geo
xKhDquRfcm6qZeBAAYV/oHsbFywl4nkRmftfndTwgibyKk9XN4bkPes99x/k5yxy
qG65tdanoBQP9nRPLLjoeZKxtU49lYMCEZve0NQY8hfgBEsh7zyLRkpUcBlQ/pi2
Ipcf/sKdAJ8fxVgr5mvKKjUxfA2C8kSE/n7rmNypQVWdu7e+Kn+Pog0VDmvmKD9j
mxp85+JA1XIL8HnOsj1VeiymvYm4M5aczH/gXP5cGWg7eJHvDTpJP5uVWIL10mA=
=Sa/e
-----END PGP SIGNATURE-----


More information about the devel mailing list