log permissions

To: debian-security@lists.debian.org
Subject: log permissions
From: Ian <ian@semisphere.org>
Date: Fri, 3 Nov 2000 16:50:27 +1100
Message-id: <[🔎] 20001103165027.A3159@ids.org.au>
Mail-followup-to: Ian <ian@semisphere.org>, debian-security@lists.debian.org

Hi,

I have a slink->potato->woody server, and I am a little concerned about the permissions some of the log files in /var/log have.

There are too many to list, but here are some:
-rw-r--r--    1 root     root      8232348 Nov  3 06:43 tripwire
-rw-r--r--    1 root     root        10152 Nov  3 14:49 wdm.log
-rw-r--r--    1 root     root            0 Nov  3 06:26 mysql.err
-rw-r--r--    1 root     adm             0 Oct 29 06:47 cfingerd.log
-rw-r--r--    1 root     root         8483 Oct 22 12:42 dmesg
-rw-rw-r--    1 root     utmp       320908 Nov  3 16:43 lastlog
-rw-r--r--    1 root     root       947139 Nov  3 16:36 nmb

why are these files read by all? I have "normal" users on my system, and although I trust them, these kinds of permissions make me feel a little paranoid. ie: they could be used by someone to investigate system use, etc..



-- 
Ian Cumming, ian@semisphere.org

"The number of Unix installations has grown to 10, with more expected."
-- The Unix Programmer's Manual, 2nd Edition, June, 1972

Reply to:

Follow-Ups:
- Re: log permissions
  - From: Trek Star <trek-lists@trek.eu.org>
- Re: log permissions
  - From: Pedro Zorzenon Neto <pzn@terra.com.br>
- Re: log permissions
  - From: Christian Kurz <shorty@debian.org>

Prev by Date: Re: I want to try something for freedom.
Next by Date: Re: Postfix is spammer-friendly by default on potato and woody
Previous by thread: Re: Postfix is spammer-friendly by default on potato and woody
Next by thread: Re: log permissions
Index(es):
- Date
- Thread