> Could anyone point me to the RedHat documented default ownership and > permissions for /var/log/* (like messages and secure). > > There are the default permissions when it is installed; but I can not > seem > to find either a Best Practices or Security Document that list what the > permissions should ideally be. Does such documentation exist?
Another fairly good resource is the CIS RHEL Security Configuration Benchmark. https://www.cisecurity.org/tools2/linux/CIS_RHEL_5.0-5.1_Benchmark_v.1.1.2.pdf Section 6.3 talks about log file permissions and tells you to set permissions so that unauthorized individuals don't have access. That's not all that helpful but the example script in that section gives some hints as to what you can probably set for permissions. I set mode 600 on anything that non-administrators shouldn't be interested in. In exception cases I change to 644 if, for example, developers want access to httpd or tomcat logs. Matt _______________________________________________ rhelv5-list mailing list [email protected] https://www.redhat.com/mailman/listinfo/rhelv5-list
