Hi Michael, thanks to some insights from Bastian Blank explaining ACLs, I have the following hypothesis:
On Fri, Aug 09, 2019 at 04:16:06PM +0200, Michael Biebl wrote: > I have never seen this behaviour myself on the multitude of systems I > run (laptop, servers, VM, containers) so I don't really have any idea. That would be: - System boots up - journald starts - journald creates directories in /run/log without caring much - journald begins logging, creating file without -x bits - systemd-tmpfiles starts - systemd-tmpfiles fixes directory permissions including ACL and defaults settings (cf /usr/lib/tmpfiles.d/systemd.conf) - journald rotates logs - new journal is created - defaults settings on directory are honored now - so the new journal has the x bit set Can you check whether this might be the case? It would be a good idea to sample the ACLs on /run/log/journal/<machineid> before and after journald starts up but before tmpfiles is run. I don't have an idea how to do that. Greetings Marc -- ----------------------------------------------------------------------------- Marc Haber | "I don't trust Computers. They | Mailadresse im Header Leimen, Germany | lose things." Winona Ryder | Fon: *49 6224 1600402 Nordisch by Nature | How to make an American Quilt | Fax: *49 6224 1600421
