Re: world readable log files and /etc/ files

Tue, 30 Apr 2002 00:19:52 -0500

It is also important to remember not to chown log files. If you do this you could run into problems. The proccess that writes the file may not be able too. 


From: Wichert Akkerman <[EMAIL PROTECTED]>
To: debian-security@lists.debian.org
Subject: Re: world readable log files and /etc/ files
Date: Sun, 28 Apr 2002 21:06:35 +0200
MIME-Version: 1.0

Received: from murphy.debian.org ([65.125.64.134]) by hotmail.com with 
Microsoft SMTPSVC(5.0.2195.4905); Sun, 28 Apr 2002 12:10:17 -0700

Received: (qmail 10946 invoked by uid 38); 28 Apr 2002 19:06:45 -0000
Received: (qmail 10906 invoked from network); 28 Apr 2002 19:06:43 -0000

Received: from cabal.xs4all.nl (HELO mx1.wiggy.net) 
([EMAIL PROTECTED])  by murphy.debian.org 
with SMTP; 28 Apr 2002 19:06:43 -0000
Received: from wichert by mx1.wiggy.net with local (Exim 3.35 #1 
(Debian))id 171u0J-0003Ux-00for <debian-security@lists.debian.org>; Sun, 28 
Apr 2002 21:06:35 +0200

X-Envelope-Sender: [EMAIL PROTECTED]
Message-ID: <[EMAIL PROTECTED]>
Mail-Followup-To: debian-security@lists.debian.org
References: <[EMAIL PROTECTED]>
In-Reply-To: <[EMAIL PROTECTED]>
User-Agent: Mutt/1.3.28i
Resent-Message-ID: <[EMAIL PROTECTED]>
Resent-From: debian-security@lists.debian.org
X-Mailing-List: <debian-security@lists.debian.org> archive/latest/7034
X-Loop: debian-security@lists.debian.org
List-Post: <mailto:debian-security@lists.debian.org>
List-Help: <mailto:[EMAIL PROTECTED]>

List-Subscribe: 
<mailto:[EMAIL PROTECTED]>
List-Unsubscribe: 
<mailto:[EMAIL PROTECTED]>

Precedence: list
Resent-Sender: [EMAIL PROTECTED]
Return-Path: [EMAIL PROTECTED]

X-OriginalArrivalTime: 28 Apr 2002 19:10:18.0777 (UTC) 
FILETIME=[561ED890:01C1EEE8]


Previously Ian Cumming wrote:
> I was quite alarmed. There seem to be many files with world readable
> permissions, which _shouldnt_.

If you don't trust your local users on a server you have a different
problem imho.

> What is the policy for log files? I understand that it doesnt do _that_
> much harm allowing others to read, but it does disclose more than I want
> to reveal.

World-readable except for files with sensitive information.

Wichert.

--
  _________________________________________________________________
 /[EMAIL PROTECTED]         This space intentionally left occupied \
| [EMAIL PROTECTED]            http://www.liacs.nl/~wichert/ |
| 1024D/2FA3BC2D 576E 100B 518D 2F16 36B0  2805 3CB8 9250 2FA3 BC2D |


--
To UNSUBSCRIBE, email to [EMAIL PROTECTED]

with a subject of "unsubscribe". Trouble? Contact 
[EMAIL PROTECTED]





_________________________________________________________________

MSN Photos is the easiest way to share and print your photos: 
http://photos.msn.com/support/worldwide.aspx



--
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]























					Reply via email to