Bugzilla – Bug 146580
syslog should be not mandatory
Last modified: 2006-01-30 13:24:22 UTC
There are systems where logging should be done as low as possible for privacy purposes. That meas especially that sysog should be turned off. Turning syslog off however is not possible because many other serviced depenbd on it. An easy way to allow syslog to be turned of is putting it into the X-UnitedLinux-Should-Start: header instead of the Required-Start: header for all services which want to have syslog started first.
A UNIX-like system has to have a syslog facility. It depends on the system adminstrator to change the /etc/syslog-ng/syslog-ng.conf of /etc/syslog.conf to filter out the appropiate message levels and change the permissions of the log files at /var/log/. Compares this with /etc/permissions and /etc/permissions.* and the files within /etc/permissions.d/.
well, but there is actually no prolblem if you shut down syslogd and it is very convenient way to achieve more privacy without having to fiddle around with the not so easy syslog.conf. Syslog still is installed and on with every installation but what speaks against a soft dependecy via X-UnitedLinux-Should-Start for people who want to turn it off on their own risk?
Shuting down syslogd is a bad idea. There is no way to debug problems or identify attacks anymore. This is the reason for syslog facility. Beside this, the onyl user which can read log files with personal data is root and root is able to start syslogd.