[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Re: [PROPOSAL] Permissions of /var/log.

On Mar 28, Santiago Vila <sanvila@unex.es> wrote:

 >The /var/log directory should have permissions 2775 (group-writable and
 >set-group-id) and be owned by root.adm.
 >Rationale: root.adm is a better default than root.root.
This isn't a rationale, it's more like a joke.
Please explain the purpose of the adm group and why its members should
be able to destroy logs. A member of the adm group can't rotate logs
anyway because he can't restart syslogd.


Reply to: