On 23/05/18 14:46, Timothy Redaelli wrote:
> Commit 94cd8383e297 ("rhel: fix log directory permissions") restored the
> old 755 permission on /var/log/openvswitch and this can result in the
> exposure of sensitive information.
>
> Since commit f624bf23b62a ("rhel: user/group openvswitch does not exist")
> moved the user/group creations in %pre phase it's now possible to change
> /var/log/openvswitch user/group to openvswitch:openvswitch and remove
> the r/x bits for other again without having the "permission denied"
> error when the logs are rotated.
>
> CC: Aaron Conole <[email protected]>
> Fixes: 94cd8383e297 ("rhel: fix log directory permissions")
> Signed-off-by: Timothy Redaelli <[email protected]>
> Acked-by: Aaron Conole <[email protected]>
> ---
Reviewed-by: Markos Chandras <[email protected]>
--
markos
SUSE LINUX GmbH | GF: Felix Imendörffer, Jane Smithard, Graham Norton
HRB 21284 (AG Nürnberg) Maxfeldstr. 5, D-90409, Nürnberg
_______________________________________________
dev mailing list
[email protected]
https://mail.openvswitch.org/mailman/listinfo/ovs-dev
