Rotated logs has insecure file permissions

OpenSubmitted by semente.
Details
2 participants
  • Ludovic Courtès
  • semente
Owner
unassigned
Severity
important
S
S
semente wrote on 9 Sep 13:31 +0200
(name . Guix Bug Reports)(address . bug-guix@gnu.org)
513050f2-2631-474b-9a31-8f9aa945dead@www.fastmail.com
Rotated logs has different file permissions to the original log files.

For example the log file /var/log/secure:

-rw-r----- 1 root root secure
-rw-r--r-- 1 root root secure.1.gz
L
L
Ludovic Courtès wrote on 21 Oct 12:16 +0200
control message for bug #57701
(address . control@debbugs.gnu.org)
8735bh8ota.fsf@gnu.org
tags 57701 + security
quit
L
L
Ludovic Courtès wrote on 21 Oct 12:16 +0200
(address . control@debbugs.gnu.org)
871qr18osy.fsf@gnu.org
severity 57701 important
quit
?
Your comment

Commenting via the web interface is currently disabled.

To comment on this conversation send email to 57701@debbugs.gnu.org