Re: Permissions of /var/log

To: Santiago Vila <sanvila@unex.es>
Cc: Debian Policy <debian-policy@lists.debian.org>
Subject: Re: Permissions of /var/log
From: Wichert Akkerman <wichert@cistron.nl>
Date: Tue, 25 Jan 2000 16:20:12 +0100
Message-id: <[🔎] 20000125162010.A25515@cistron.nl>
Mail-followup-to: Santiago Vila <sanvila@unex.es>, Debian Policy <debian-policy@lists.debian.org>
In-reply-to: <[🔎] Pine.LNX.3.96.1000125153939.4386A-100000@cantor.unex.es>; from sanvila@unex.es on Tue, Jan 25, 2000 at 03:59:11PM +0100
References: <[🔎] Pine.LNX.3.96.1000125153939.4386A-100000@cantor.unex.es>

Previously Santiago Vila wrote:
> How do we want these files to be?
> 
> a) All of them should be root.root.
> b) All of them should be root.adm.
> c) This should not be covered by policy.

I would say c) and let common sense decide. Generally the idea is:

1. logfiles which don't contain sensitive data should be readable
   by everyone. Which group they have doesn't really matter.
2. logfiles which contain sensitive data should only readable by
   root and admins, and thus be owned by root.adm and mode 640.

Wichert.

Reply to:

Follow-Ups:
- Re: Permissions of /var/log
  - From: Jean-Christophe.Dubacq@ens-lyon.fr
- Re: Permissions of /var/log
  - From: Santiago Vila <sanvila@unex.es>

References:
- Permissions of /var/log
  - From: Santiago Vila <sanvila@unex.es>

Prev by Date: Permissions of /var/log
Next by Date: Re: Permissions of /var/log
Previous by thread: Permissions of /var/log
Next by thread: Re: Permissions of /var/log
Index(es):
- Date
- Thread