Re: The permissions of the apache2 log dir

To: debian-user@lists.debian.org
Subject: Re: The permissions of the apache2 log dir
From: Nicky Thomassen <nicky@aptget.dk>
Date: Sun, 3 Jun 2012 10:43:08 +0200
Message-id: <[🔎] 20120603104308.7d5a2f7d@asrock.local.aptget.dk>
In-reply-to: <[🔎] CAOEVnYvRKyQ1emq-FKO7i31E9RKui+8EEYXHjESqRrkp-dfbVQ@mail.gmail.com>
References: <[🔎] 20120602211735.65224073@asrock.local.aptget.dk> <[🔎] CAOEVnYvRKyQ1emq-FKO7i31E9RKui+8EEYXHjESqRrkp-dfbVQ@mail.gmail.com>

On Sat, 2 Jun 2012 18:10:51 -0500
"Christofer C. Bell" <christofer.c.bell@gmail.com> wrote:

> On Sat, Jun 2, 2012 at 2:17 PM, Titanus Eramius <titanus@aptget.dk>
> wrote:
> > Hi list
> >
> > Last week i ran into the very restrictive folder permissions of the
> > apache2 log dir. They where "drwxr-x--- root adm" but I changed them
> > to "rwxr-xr-x root adm" so a unprivileged user may opdate
> > webalizer[1] at night.
> >
> > That got me thinking (which I generally don't like...), does anyone
> > know why the permissions are so strict, and is there a risk in the
> > change I've made beside that everybody now may read the logs?
> >
> > The answer seems to elude me.
> 
> The answer eludes you because... that's it!  There's no other risk to
> what you've done.  That said, I went the other way and stuck my user
> account in the adm group so I could read logs.
> 

Well, for some reason I am kind of disappointed. Next time around I
guess I'll put the user in adm too, so thanks for the tip and thanks
for the answer. Tit

Reply to:

References:
- The permissions of the apache2 log dir
  - From: Titanus Eramius <titanus@aptget.dk>
- Re: The permissions of the apache2 log dir
  - From: "Christofer C. Bell" <christofer.c.bell@gmail.com>

Prev by Date: Re: Re (2): Computer case
Next by Date: Re: Programs for direct friend-to-friend file transfer?
Previous by thread: Re: The permissions of the apache2 log dir
Next by thread: Re: The permissions of the apache2 log dir
Index(es):
- Date
- Thread