[openstack-keystone] restrict /var/log/keystone/

[Alan Pevec]

commit 7f515b3ea0304122a762490a946eb604a04c720d
Author: Alan Pevec <apevec at redhat.com>
Date:   Mon Jun 24 12:06:56 2013 +0200

    restrict /var/log/keystone/
    
    rhbz#956814

 openstack-keystone.spec |    7 +++++--
 1 files changed, 5 insertions(+), 2 deletions(-)
---
diff --git a/openstack-keystone.spec b/openstack-keystone.spec
index b15dbe5..fcdcee9 100644
--- a/openstack-keystone.spec
+++ b/openstack-keystone.spec
@@ -8,7 +8,7 @@
 
 Name:           openstack-keystone
 Version:        2013.2
-Release:        0.2.b%{milestone}%{?dist}
+Release:        0.3.b%{milestone}%{?dist}
 Summary:        OpenStack Identity Service
 
 License:        ASL 2.0
@@ -199,7 +199,7 @@ fi
 %config(noreplace) %attr(-, keystone, keystone) %{_sysconfdir}/keystone/policy.json
 %config(noreplace) %{_sysconfdir}/logrotate.d/openstack-keystone
 %dir %attr(-, keystone, keystone) %{_sharedstatedir}/keystone
-%dir %attr(-, keystone, keystone) %{_localstatedir}/log/keystone
+%dir %attr(0750, keystone, keystone) %{_localstatedir}/log/keystone
 
 %files -n python-keystone
 %defattr(-,root,root,-)
@@ -213,6 +213,9 @@ fi
 %endif
 
 %changelog
+* Mon Jun 24 2013 apevec at redhat.com 2013.2-0.3.b1
+- restrict /var/log/keystone/ rhbz#956814
+
 * Sat Jun 22 2013 apevec at redhat.com 2013.2-0.2.b1
 - Force simple Bind for authentication CVE-2013-2157