On Sat, 2 Jun 2012 18:10:51 -0500 "Christofer C. Bell" <[email protected]> wrote:
> On Sat, Jun 2, 2012 at 2:17 PM, Titanus Eramius <[email protected]> > wrote: > > Hi list > > > > Last week i ran into the very restrictive folder permissions of the > > apache2 log dir. They where "drwxr-x--- root adm" but I changed them > > to "rwxr-xr-x root adm" so a unprivileged user may opdate > > webalizer[1] at night. > > > > That got me thinking (which I generally don't like...), does anyone > > know why the permissions are so strict, and is there a risk in the > > change I've made beside that everybody now may read the logs? > > > > The answer seems to elude me. > > The answer eludes you because... that's it! There's no other risk to > what you've done. That said, I went the other way and stuck my user > account in the adm group so I could read logs. > Well, for some reason I am kind of disappointed. Next time around I guess I'll put the user in adm too, so thanks for the tip and thanks for the answer. Tit -- To UNSUBSCRIBE, email to [email protected] with a subject of "unsubscribe". Trouble? Contact [email protected] Archive: http://lists.debian.org/[email protected]
