Bug#252784: [Logcheck-devel] Bug#252784: logcheck: /etc/logcheck/* should be world-readable

maks attems debian at sternwelten.at
Sat Jun 5 17:14:59 UTC 2004


hello justin,

On Sat, 05 Jun 2004, Justin B Rye wrote:
..
> The chgrp/chmod commands in logcheck.postinst currently set badly
> incoherent permissions: on the one hand, the files in /etc/logcheck
> are world-readable; on the other hand, the subdirectories are all
> "750 root:logcheck", so a mere adm-group member can't so much as
> list the rules files. 

the files are no longer world readable for latest logcheck in sid.
 
> Unreadability is pointless in files anyone can download copies of.

well the unreadability is important as it not only affects the 
known files of the logcheck package but also the local ruleset,
who can very likely differ a lot from our upstream!


> And once that's fixed, the logcheck-group ownership is redundant.
> So what they really ought to be is something like "755 root:root".
> Suggested patch (against the logcheck-1.2.21 version) attached.

as aboves assumptions don't stand on current logcheck,
you may want too reconsider your patch.
anyways thanks for your bug report.

regards maks


-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 189 bytes
Desc: Digital signature
Url : http://lists.alioth.debian.org/pipermail/logcheck-devel/attachments/20040605/40680db2/attachment.pgp 


More information about the Logcheck-devel mailing list