upstart log file permissions are too paranoid
Bug #1423784 reported by
Jens Elkner
This bug report is a duplicate of:
Bug #1074564: Upstart logfiles should be readable by adm group.
Edit
Remove
This bug affects 11 people
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
upstart |
New
|
Undecided
|
Unassigned |
Bug Description
The current upstart log file permissions are too paranoid 0640 and there is no documented way, how to change it (either the mode or ownership). So it is ridiculous to give user super user permissions, just for being able to read such files. So either make upstart to use mode 0644 or provide a mechanism that let an admin choose the level of paranoia.
information type: | Private Security → Public |
To post a comment you must log in.
In most companies SysAdmins install upstart jobs but dev need to read it to find issues / errors. With this restriction either the dev need to have root permission or sysadmin need to copy the logs to other directory.
I understand the security restrictions but there should be a way to allow other system users to read the logs