[systemd-devel] [ANNOUNCE] systemd v39
Michael Biebl
mbiebl at gmail.com
Wed Jan 25 03:59:49 PST 2012
Am 25. Januar 2012 12:00 schrieb Kay Sievers <kay.sievers at vrfy.org>:
> On Wed, Jan 25, 2012 at 11:11, Jan Engelhardt <jengelh at medozas.de> wrote:
>> On Wednesday 2012-01-25 02:02, Lennart Poettering wrote:
>
>>>[v39]
>>>* If a group "adm" exists, journal files are automatically
>>> owned by them
>>
>> This sounds like it has the potential that journal files suddenly
>> beomce writable by a random user group that has existed previously.
>
> The group 'adm' isn't random, is it? It's pretty commonly used for
> 'system monitoring' users.
In Debian (and derivatives) group "adm" is shipped by the base-passwd
package, so guaranteed to exist. The relevant documentation reads:
adm
Group adm is used for system monitoring tasks. Members of this group can
read many log files in /var/log, and can use xconsole.
Historically, /var/log was /usr/adm (and later /var/adm), thus the name of
the group.
The log files in /var/log that are created by the syslog daemon, are
owned by group adm.
More information about the systemd-devel
mailing list