Hi all, I just checked the permissions on files in /var/log. Too my surprise, I saw quite a few log files that are world readable. Now this may not be a big problem, but I thought that at least some of these should not be out of security concerns. Any opinions?
The following are world readable on my rather spartan system: /var/log/apache/access.log* /var/log/apache/error.log* /var/log/dmesg /var/log/faillog /var/log/ksymoops/*.ksyms /var/log/ksymoops/*.modules /var/log/lastlog /var/log/news/news.* /var/log/nmb* /var/log/smb* /var/log/wtmp Not world readable are: /var/log/auth.log* /var/log/daemon.log* /var/log/debug* /var/log/exim/mainlog* /var/log/installer.log /var/log/kern.log* /var/log/lpr.log* /var/log/mail.err* /var/log/mail.info* /var/log/mail.log* /var/log/mail.warn* /var/log/messages* /var/log/setuid.changes* /var/log/setuid.today /var/log/setuid.yesterday /var/log/syslog* /var/log/user.log* /var/log/uucp.log* BTW, what is /var/log/mail.* good for if you have exim installed? -- Olaf Meeuwissen Epson Kowa Corporation, Research and Development
