Gentoo Logo
Gentoo Spaceship




Note: Due to technical difficulties, the Archives are currently not up to date. GMANE provides an alternative service for most mailing lists.
c.f. bug 424647
List Archive: gentoo-security
Navigation:
Lists: gentoo-security: < Prev By Thread Next > < Prev By Date Next >
Headers:
To: gentoo-security@g.o
From: Jerome Poggi <Jerome.Poggi@...>
Subject: Re: Running app-admin/syslog-ng without rootprivileges
Date: Thu, 17 Nov 2005 14:50:33 +0100
On Wed, 16 Nov 2005, Brad Plant wrote:
> I ran syslog-ng as a non-root user once before, but now I run it as
> root. From what I can remember, syslog-ng opened /proc/kmsg before
> dropping privileges, however when you sent the HUP signal (i.e. after
> running logrotate) it closed all the files and reopened them again.
> Because it no longer had root permissions, it couldn't
> reopen /proc/kmsg.

Why did you rotate yourself your log ?
You better use MACRO like :

destination full {
        file("/var/log/full/full_$YEAR.$MONTH.$DAY.log" log_fifo_size(1000) dir_perm(0755) create_dirs(yes));
        file("/dev/tty12");
};
destination full_net {
	file("/var/log/net/net_$HOST.$YEAR/$MONTH.$DAY.log" dir_perm(0755) create_dirs(yes)); 
};

Its better usable :-)

--
Jerome POGGI                                      Jerome.Poggi@...
Herve Schauer Consultants -=- Consultant Sécurité Informatique, CISSP
http://www.hsc.fr/                              Tèl : +33 141 409 700

-- 
gentoo-security@g.o mailing list


References:
Re : Running app-admin/syslog-ng without rootprivileges
-- varagnat
Re: Re : Running app-admin/syslog-ng without rootprivileges
-- Brad Plant
Navigation:
Lists: gentoo-security: < Prev By Thread Next > < Prev By Date Next >
Previous by thread:
Re: Re : Running app-admin/syslog-ng without rootprivileges
Next by thread:
Re: Re : Running app-admin/syslog-ng without rootprivileges
Previous by date:
Re: Re : Running app-admin/syslog-ng without rootprivileges
Next by date:
Re : Running app-admin/syslog-ng withoutrootprivileges


Updated Jun 17, 2009

Summary: Archive of the gentoo-security mailing list.

Donate to support our development efforts.

Copyright 2001-2013 Gentoo Foundation, Inc. Questions, Comments? Contact us.