Access rights for system logs
Matthias Runge
mrunge at matthias-runge.de
Sat Feb 26 09:44:05 UTC 2011
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
On 02/25/11 17:21, Till Maas wrote:
> On Fri, Feb 25, 2011 at 03:50:57PM +0100, Matej Cepl wrote:
>> Dne 25.2.2011 10:39, Mogens Kjaer napsal(a):
>>> create 640 root wheel
>>>
>>> to /etc/logrotate.d/syslog and have added bbuser to the wheel group.
>>>
>>> That file is owned by rsyslog in Fedora and sysklogd in RHEL.
>>
>> I am not sure whether wheel is the correct group ... I don't think we
>> should mix together two different things (who can use sudo, who can see
>> logs).
>
> I like a special group just for accounts that should be able to read all
> log files, too, e.g. a group logread.
>
> Regards
> Till
>
That sounds good to me. Should we include a group "logwriter" or
"logger" for completeness?
Who is in charge to change this? ... which way do I/we have to go to
reach this aim? Is this just contacting rsyslog-maintainer to change
ownership? I suppose not.
Matthias
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.11 (GNU/Linux)
Comment: Using GnuPG with Fedora - http://enigmail.mozdev.org/
iQEcBAEBAgAGBQJNaMtlAAoJEOnz8qQwcaIWhxgH/2omTQsYaQkb4mRQz5zSrbms
1HWrlkUfo+7OQ4dIZfe4ufbbhkSoyVg4fbDZIrtrAhZQvHfg1yTP0b2t0SkAE5g3
/6pXFRRsHh+7S4yq5yWoTE26SzeIDYwFxWEVv9DXjQ4J3xxKIXgkS9MoA8H2tSoO
DbcrYYFudc1j+nvTwSBrVhvJh7BNCT+dMNc+z221iCx1RPe2P7BUlI/EHzDZpi2F
P40d6Gs9Ii4GKqp4VaU7lC9ylGUId1WkYiVTjx9ykyelfGqUy1W6YTtYugXqkZRJ
haJQjow0WrxKvFVw4DHhi0ZP3RkPO/F8g6PHU8yBBo7W+wJ9Ex4QTlccWc5pHRU=
=wUQ0
-----END PGP SIGNATURE-----
More information about the devel
mailing list