| 1 |
Am 05.08.2011 17:22, schrieb Jarry: |
| 2 |
> Hi, |
| 3 |
> today I received this mail from cron: |
| 4 |
> --- |
| 5 |
> error: skipping "/var/log/portage/elog/summary.log" because |
| 6 |
> parent directory has insecure permissions (It's world writable |
| 7 |
> or writable by group which is not "root") Set "su" directive |
| 8 |
> in config file to tell logrotate which user/group should be |
| 9 |
> used for rotation. |
| 10 |
> --- |
| 11 |
> |
| 12 |
> My /var/log/portage/elog has this permissions: |
| 13 |
> drwxrws--- 2 portage portage 4096 Jun 1 2010 elog |
| 14 |
> |
| 15 |
> What is wrong with it? I'm pretty sure I did not touch it |
| 16 |
> for years so I'm surprised logrotate is suddenly complaining |
| 17 |
> (it has been updated recently, that might be reason). |
| 18 |
> |
| 19 |
> Anyway, how should those permissions look like to make |
| 20 |
> logrotate (and cron) happy? |
| 21 |
> |
| 22 |
> Jarry |
| 23 |
> |
| 24 |
|
| 25 |
Yes, this was introduced in 3.8.0 to fix security issues [1]. Change |
| 26 |
your config to look like this: |
| 27 |
/var/log/portage/elog/summary.log { |
| 28 |
su portage portage |
| 29 |
... |
| 30 |
} |
| 31 |
|
| 32 |
Disclaimer: I've not really tried this (yet) but I think I'm able to |
| 33 |
read changelogs and man-pages. ;-) |
| 34 |
|
| 35 |
[1] https://bugzilla.redhat.com/show_bug.cgi?id=680799 |
| 36 |
|
| 37 |
Regards, |
| 38 |
Florian Philipp |
Archives