Re: /var/adm/auth.log permissions

To: nn201@cus.cam.ac.uk (Nikhil Nair)
Cc: debian-devel@Pixar.com
Subject: Re: /var/adm/auth.log permissions
From: Chris Fearnley <cjf@netaxs.com>
Date: Tue, 27 Feb 1996 00:06:16 -0500 (EST)
Message-id: <[🔎] 199602270506.AAA29292@unix3.netaxs.com>
In-reply-to: <[🔎] Pine.LNX.3.91.960226230301.5660A-100000@amasis.trin.cam.ac.uk> from "Nikhil Nair" at Feb 26, 96 11:06:59 pm

'Nikhil Nair wrote:'
>
>Hi,
>
>I notice that on more than one debian system, /var/adm/auth.log* are 
>world readable.  Now, if someone logs in incorrectly, typing their 
>password instead of their userid, that is a serious security risk.
>
>Some time ago, I did change it using `chmod o=', but I notice now that 
>it's back as it was: it's obviously been created again during logfile 
>rotation.  How can I fix this?  Which package is it part of?

Thanks for the clue.  I found the culprit: /etc/cron.weekly/syslogd

It is (at least partially) fixed in syslogd version 1.2-19 (on my ELF
system).  It is/was broken in 1.2-15.  I'd prefer to have cron.log,
daemon.log, debug, and messages world unreadable too.  But at least
auth.log is getting 640 treatment now.

-- 
Christopher J. Fearnley            |    UNIX SIG Leader at PACS
cjf@netaxs.com                     |    (Philadelphia Area Computer Society)
http://www.netaxs.com/~cjf         |    Design Science Revolutionary
ftp://ftp.netaxs.com/people/cjf    |    Explorer in Universe
"Dare to be Naive" -- Bucky Fuller |    Linux Advocate

Reply to:

References:
- /var/adm/auth.log permissions
  - From: Nikhil Nair <nn201@cus.cam.ac.uk>

Prev by Date: Re: Bug#932: Pine over-encodes files and auto-requests document
Next by Date: List re-organization
Previous by thread: /var/adm/auth.log permissions
Next by thread: Re: /var/adm/auth.log permissions
Index(es):
- Date
- Thread