Bug 134541 - Syslog permissions
Summary: Syslog permissions
Status: RESOLVED INVALID
Alias: None
Product: SUSE Linux 10.1
Classification: openSUSE
Component: Basesystem (show other bugs)
Version: Alpha 3
Hardware: Other Other
: P5 - None : Normal (vote)
Target Milestone: ---
Assignee: Dr. Werner Fink
QA Contact: E-mail List
URL:
Whiteboard:
Keywords:
Depends on:
Blocks:
 
Reported: 2005-11-19 15:04 UTC by Michael Stather
Modified: 2005-11-22 10:28 UTC (History)
0 users

See Also:
Found By: Other
Services Priority:
Business Priority:
Blocker: ---
Marketing QA Status: ---
IT Deployment: ---

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.
Description Michael Stather 2005-11-19 15:04:00 UTC 
There are some nice tools available like MetaMonitor which display new syslog items with popups. Unfortunately the permission of /var/log/messages are set to -rw-r----- which makes a user unable to read this file. Could this be changed to allow reading the file for all users?IMHO the syslog is nothing a user shouldn´t be allowed to read.
Comment 1 Dr. Werner Fink 2005-11-21 10:46:31 UTC 
Bad idea, suppose a user exchange password with user account name.
This data should not be readable to normal users. The nice tool
should use /dev/xconsole, a pipe which is used by syslog and syslog-ng
if a reader is attached to this pipe. Only data which are not
security relevant will be written to that pipe.
Comment 2 Michael Stather 2005-11-21 21:39:09 UTC 
Ok, this sounds reasonable.
/dev/xconsole is also set to -rw-r----- by default,so I can´t set MetaMonitor to watch this pipe.
Comment 3 Dr. Werner Fink 2005-11-22 10:28:45 UTC 
the permissions will be set dynamically:

-> /etc/X11/xdm/GiveDevices
-> /etc/X11/xdm/TakeDevices