Bug#35504: PROPOSAL] Permissions of /var/log.

To: Seth R Arnold <sarnold@willamette.edu>, 35504@bugs.debian.org
Subject: Bug#35504: PROPOSAL] Permissions of /var/log.
From: Santiago Vila <sanvila@unex.es>
Date: Wed, 29 Mar 2000 13:56:31 +0200 (CEST)
Message-id: <[🔎] Pine.LNX.3.96.1000329135537.11674B-100000@cantor.unex.es>
Reply-to: Santiago Vila <sanvila@unex.es>, 35504@bugs.debian.org
In-reply-to: <[🔎] 20000329015643.P24885@willamette.edu>

On Wed, 29 Mar 2000, Seth R Arnold wrote:

> * Santiago Vila <sanvila@unex.es> [000329 01:47]:
> > -----------------------------------------------------------------------
> > The /var/log directory should have permissions 2755 (set-group-id)
> > and be owned by root.adm.
> > -----------------------------------------------------------------------
> 
> Santiago, I don't see the benefits of sgid on the directory if the sgid
> group doesn't have write permissions. A user in the adm group would not
> get elevated priveledges this way, nor does it deny any priveledges to
> other users.
> 
> Are there side effects to the directory being sgid to adm that I do not
> know?

Files created by root inside /var/log would be root.adm by default, not
root.root by default.

-- 
 "fec315260f0f42ce8e7d2cf9fbf687c8" (a truly random sig)

Reply to:

Follow-Ups:
- Bug#35504: PROPOSAL] Permissions of /var/log.
  - From: Josip Rodin <joy@cibalia.gkvk.hr>

References:
- Bug#35504: PROPOSAL] Permissions of /var/log.
  - From: Seth R Arnold <sarnold@willamette.edu>

Prev by Date: Bug#35504: PROPOSAL] Permissions of /var/log.
Next by Date: Bug#61308: [PROPOSAL] Initializing databases by using conffiles.
Previous by thread: Bug#35504: PROPOSAL] Permissions of /var/log.
Next by thread: Bug#35504: PROPOSAL] Permissions of /var/log.
Index(es):
- Date
- Thread