[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Re: The permissions of the apache2 log dir

On Sat, 2 Jun 2012 18:10:51 -0500
"Christofer C. Bell" <christofer.c.bell@gmail.com> wrote:

> On Sat, Jun 2, 2012 at 2:17 PM, Titanus Eramius <titanus@aptget.dk>
> wrote:
> > Hi list
> >
> > Last week i ran into the very restrictive folder permissions of the
> > apache2 log dir. They where "drwxr-x--- root adm" but I changed them
> > to "rwxr-xr-x root adm" so a unprivileged user may opdate
> > webalizer[1] at night.
> >
> > That got me thinking (which I generally don't like...), does anyone
> > know why the permissions are so strict, and is there a risk in the
> > change I've made beside that everybody now may read the logs?
> >
> > The answer seems to elude me.
> The answer eludes you because... that's it!  There's no other risk to
> what you've done.  That said, I went the other way and stuck my user
> account in the adm group so I could read logs.

Well, for some reason I am kind of disappointed. Next time around I
guess I'll put the user in adm too, so thanks for the tip and thanks
for the answer. Tit

Reply to: