1 |
Am 05.08.2011 17:22, schrieb Jarry: |
2 |
> Hi, |
3 |
> today I received this mail from cron: |
4 |
> --- |
5 |
> error: skipping "/var/log/portage/elog/summary.log" because |
6 |
> parent directory has insecure permissions (It's world writable |
7 |
> or writable by group which is not "root") Set "su" directive |
8 |
> in config file to tell logrotate which user/group should be |
9 |
> used for rotation. |
10 |
> --- |
11 |
> |
12 |
> My /var/log/portage/elog has this permissions: |
13 |
> drwxrws--- 2 portage portage 4096 Jun 1 2010 elog |
14 |
> |
15 |
> What is wrong with it? I'm pretty sure I did not touch it |
16 |
> for years so I'm surprised logrotate is suddenly complaining |
17 |
> (it has been updated recently, that might be reason). |
18 |
> |
19 |
> Anyway, how should those permissions look like to make |
20 |
> logrotate (and cron) happy? |
21 |
> |
22 |
> Jarry |
23 |
> |
24 |
|
25 |
Yes, this was introduced in 3.8.0 to fix security issues [1]. Change |
26 |
your config to look like this: |
27 |
/var/log/portage/elog/summary.log { |
28 |
su portage portage |
29 |
... |
30 |
} |
31 |
|
32 |
Disclaimer: I've not really tried this (yet) but I think I'm able to |
33 |
read changelogs and man-pages. ;-) |
34 |
|
35 |
[1] https://bugzilla.redhat.com/show_bug.cgi?id=680799 |
36 |
|
37 |
Regards, |
38 |
Florian Philipp |