Bug#800947: ACL for /var/log/journal not set for group adm
Michael Biebl
biebl at debian.org
Wed Oct 7 12:55:30 BST 2015
Am 05.10.2015 um 17:35 schrieb Felipe Sateler:
> I think a reasonable alternative is to ship using Storage=volatile by
> default, and ship the directory in the package (or create it in
> postinst).
After thinking more about this, I think this is the only sane solution:
- Ship /var/log/journal in the systemd package
- Apply the ACL to /var/log/journal (not the subdirectory) in postinst
- Set the default from auto to volatile
- If a user had already created a /var/log/journal directory, check for
that in preinst and create a journald.conf.d snippet setting
Storage=persistent
- Update the instructions in README.Debian how to enable persistent
journal. Recommend to use a drop-in config in
/etc/systemd/journald.conf.d/ containing
[Journal]
Storage=persistent
I don't see a way how we can make Storage=auto work properly.
A nice side-effect of no-longer using Storage=auto would be, that we
could make systemd-container ship /var/log/journal/remote without problems.
Thoughts?
--
Why is it that all of the instruments seeking intelligent life in the
universe are pointed away from Earth?
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 819 bytes
Desc: OpenPGP digital signature
URL: <http://alioth-lists.debian.net/pipermail/pkg-systemd-maintainers/attachments/20151007/4b2b1ae1/attachment-0002.sig>
More information about the Pkg-systemd-maintainers
mailing list