cvs commit: src/usr.sbin/syslogd syslogd.8 syslogd.c
Pawel Jakub Dawidek
pjd at FreeBSD.org
Tue Mar 7 00:14:58 PST 2006
On Mon, Mar 06, 2006 at 12:08:08PM -0500, John Baldwin wrote:
+> Did you know about the -C option to newsyslog? newsyslog is a better too
+> for creating the log files since its config file can specify permissions
+> (owner, group, chmod).
I agree, but I didn't removed this functionality from the newsyslog(8).
I wanted to have this simple functionality in syslogd(8) for a few small
reasons:
- I don't really buy that not creating log files is a security feature.
- You don't always want newsyslog(8) (eg. on a embedded system).
- Its more handy to add new log file and just restart syslogd without
any errors, instead of editing newsyslog.conf, executing newsyslogd -C
and then restarting syslogd.
It still would be handy to tell newsyslogd(8) to always correct owner
and permission (which it doesn't do currently, AFAIK) - root:wheel 0600
should be safe default for a log file in the meantime.
--
Pawel Jakub Dawidek http://www.wheel.pl
pjd at FreeBSD.org http://www.FreeBSD.org
FreeBSD committer Am I Evil? Yes, I Am!
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 187 bytes
Desc: not available
Url : http://lists.freebsd.org/pipermail/cvs-src/attachments/20060307/432fec45/attachment.bin
More information about the cvs-src
mailing list