[systemd-devel] [PATCH] tmpfiles: Fix journal file permissions broken by a606871
Greg KH
gregkh at linuxfoundation.org
Mon Jun 9 11:30:14 PDT 2014
On Mon, Jun 09, 2014 at 08:05:35PM +0200, Jan Alexander Steffens (heftig) wrote:
> They shouldn't be executable nor world-readable.
Why do you think they should not be?
> ---
> tmpfiles.d/systemd.conf | 10 ++++++----
> 1 file changed, 6 insertions(+), 4 deletions(-)
>
> diff --git a/tmpfiles.d/systemd.conf b/tmpfiles.d/systemd.conf
> index c5910f8..d6c4da3 100644
> --- a/tmpfiles.d/systemd.conf
> +++ b/tmpfiles.d/systemd.conf
> @@ -25,7 +25,9 @@ d /run/systemd/netif 0755 systemd-network systemd-network -
> d /run/systemd/netif/links 0755 systemd-network systemd-network -
> d /run/systemd/netif/leases 0755 systemd-network systemd-network -
>
> -m /var/log/journal 2755 root systemd-journal - -
> -Z /var/log/journal/%m 2755 root systemd-journal - -
> -m /run/log/journal 2755 root systemd-journal - -
> -Z /run/log/journal/%m 2755 root systemd-journal - -
> +z /var/log/journal 2755 root systemd-journal - -
> +z /var/log/journal/%m 2755 root systemd-journal - -
> +z /var/log/journal/%m/* 0640 root systemd-journal - -
> +z /run/log/journal 2755 root systemd-journal - -
> +z /run/log/journal/%m 2755 root systemd-journal - -
> +z /run/log/journal/%m/* 0640 root systemd-journal - -
What type of system did you test this change on? Did you try a box with
no journal at all and have it create one on startup that can then be
read by all users?
thanks,
greg k-h
More information about the systemd-devel
mailing list