Re: Followup: access to /var/log/messages

To: Debian User <debian-user@lists.debian.org>
Subject: Re: Followup: access to /var/log/messages
From: Andrew Sullivan <sullivana@bpl.on.ca>
Date: Fri, 1 Sep 2000 16:09:52 -0400
Message-id: <[🔎] 20000901160951.J10336@bpl.on.ca>
In-reply-to: <[🔎] 20000901144905.A1769@charter.net>; from jensenb@charter.net on Fri, Sep 01, 2000 at 02:49:05PM -0500
References: <[🔎] 20000901144905.A1769@charter.net>

On Fri, Sep 01, 2000 at 02:49:05PM -0500, William Jensen wrote:

> I used adduser <username> adm and it worked like a charm.  My question is why
> does it work?  The folder /var/log is owned by root and has root group.  Why
> does adm have rights to that...how does that all fit together?

If you do 
	$ls -l /var/

You'll see (among other things)

drwxr-xr-x   16 root     root         4096 Sep  1 07:59 log

So, /var/log/ is a directory, user root can read, write, and execute
everything in it, and group root and all others on the system can
read and execute everything in it.  _But_

	$ls -l /var/log/messages

gets you

-rw-r-----    1 root     adm         78711 Sep  1 15:52 /var/log/messages

which tells you that user root can read and write to this file, and
anyone in the group adm can _read_ the file.  No-one else can read
it, either.

A
-- 
Andrew Sullivan                                      Computer Services
<sullivana@bpl.on.ca>                        Burlington Public Library
+1 905 639 3611 x158                                   2331 New Street
                                   Burlington, Ontario, Canada L7R 1J4

Reply to:

References:
- Followup: access to /var/log/messages
  - From: William Jensen <jensenb@charter.net>

Prev by Date: ReadmeName and HeaderName in Apache
Next by Date: Re: howto recreate /dev/null ?
Previous by thread: Followup: access to /var/log/messages
Next by thread: ReadmeName and HeaderName in Apache
Index(es):
- Date
- Thread