Date: Thu, 12 Jul 2001 22:52:17 -0400 From: Andrew J Caines <A.J.Caines@halplant.com> To: FreeBSD Security <FreeBSD-Security@FreeBSD.org> Subject: Re: Permission on /var/log Message-ID: <20010712225217.F58433@hal9000.servehttp.com> In-Reply-To: <20010712204855.A23897@phxby.com>; from irwanhadi@phxby.com on Thu, Jul 12, 2001 at 08:48:55PM -0600 References: <20010712204855.A23897@phxby.com>
next in thread | previous in thread | raw e-mail | index | archive | help
Irwan, > I don't know whether this question already asked many times or not, but is it > okay that some log files at /var/log has permission 644 ? Shouldn't it be 600 > ? That would be up to you as the sysadmin. You choose what to log, where to log it and who can do what with those logs. For example, you may want to keep security, auth and authpriv messages in a log file with 600 permissions, while you may not care who can read the the mail log. What information gets written to what log is defined in syslog.conf. Don't forget to set the correct mode (and optionally ownership) in newsyslog.conf so that permissions are correct after rotation. -Andrew- -- ______________________________________________________________________ | -Andrew J. Caines- Unix Systems Engineer A.J.Caines@halplant.com | To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20010712225217.F58433>