Bug 134541

Summary: Syslog permissions
Product: [openSUSE] SUSE Linux 10.1 Reporter: Michael Stather <kontakt>
Component: BasesystemAssignee: Dr. Werner Fink <werner>
Status: RESOLVED INVALID QA Contact: E-mail List <qa-bugs>
Severity: Normal    
Priority: P5 - None    
Version: Alpha 3   
Target Milestone: ---   
Hardware: Other   
OS: Other   
Whiteboard:
Found By: Other Services Priority:
Business Priority: Blocker: ---
Marketing QA Status: --- IT Deployment: ---

Description Michael Stather 2005-11-19 15:04:00 UTC 
There are some nice tools available like MetaMonitor which display new syslog items with popups. Unfortunately the permission of /var/log/messages are set to -rw-r----- which makes a user unable to read this file. Could this be changed to allow reading the file for all users?IMHO the syslog is nothing a user shouldn´t be allowed to read.
Comment 1 Dr. Werner Fink 2005-11-21 10:46:31 UTC 
Bad idea, suppose a user exchange password with user account name.
This data should not be readable to normal users. The nice tool
should use /dev/xconsole, a pipe which is used by syslog and syslog-ng
if a reader is attached to this pipe. Only data which are not
security relevant will be written to that pipe.
Comment 2 Michael Stather 2005-11-21 21:39:09 UTC 
Ok, this sounds reasonable.
/dev/xconsole is also set to -rw-r----- by default,so I can´t set MetaMonitor to watch this pipe.
Comment 3 Dr. Werner Fink 2005-11-22 10:28:45 UTC 
the permissions will be set dynamically:

-> /etc/X11/xdm/GiveDevices
-> /etc/X11/xdm/TakeDevices