On Mon, Mar 14, 2022 at 11:38:01AM +0100, Michael Biebl wrote:
> Nowadays I have a persistent journal enabled basically everywhere, which
> somewhat mitigates this issue as /var/log/journal/<machineid> will persist
> across reboots and new files will always inherit the same ACLs settings.

That might apply to the default configuration, yes.

> That said, I know too little about ACLs to suggest a way how to setup the
> parent folder differently so new files not getting the (ineffective) x-bit.

Maybe ACLs have a construct similiar to umask?

> It's a bit of an oddity for sure but at least with a persistent journal you
> would not get this warning from aide I assume as all files would now have an
> (in-effective) x-bit set?

I have no machine running with a persistent journal. I am probably too
much an old fart to adjust my finger memory to using journalctl, despite
desperately trying for years yet.


Marc Haber         | "I don't trust Computers. They | Mailadresse im Header
Leimen, Germany    |  lose things."    Winona Ryder | Fon: *49 6224 1600402
Nordisch by Nature |  How to make an American Quilt | Fax: *49 6224 1600421

Reply via email to