On Sun, Mar 15, 2009 at 8:55 PM, J.R. Mauro jrm8...@gmail.com wrote:
On Sun, Mar 15, 2009 at 11:18 PM, ron minnich rminn...@gmail.com wrote:
note that those files are append-only.
logs on unix are writeable by everyone:
[rminn...@panzer ~]$ logger -p kern.err JUNK
[rminn...@panzer ~]$ sudo
An alternative for the paranoid perhaps would be to make an additional fs
(in fossil) containing the log files. This fs could be set to accept only
the hostowner's credentials for attach requests. The hostowner, meanwhile,
when constructing namespaces, could bind the right file(s) into the
On Mon, Mar 16, 2009 at 2:30 AM, ron minnich rminn...@gmail.com wrote:
On Sun, Mar 15, 2009 at 8:55 PM, J.R. Mauro jrm8...@gmail.com wrote:
On Sun, Mar 15, 2009 at 11:18 PM, ron minnich rminn...@gmail.com wrote:
note that those files are append-only.
logs on unix are writeable by everyone:
I've just built out a new Plan 9 cpu/auth server and noticed that
others are able to write to the logs. Is this intentional or just an
oversight?
cpu% ls -l /sys/log
a-rw-rw-rw- M 2936 syssys 0 Aug 3 2007 /sys/log/6in4
a-rw-rw-rw- M 2936 syssys 0 Apr 26 2002
intentional. if you do a ls -ltm, you will see [none] would have
updated smtp*, runq etc...
upas/*, others run as none, and well...
is it a shortcoming compared to unix world? these logs
are not sacrosanct.
On Sun, Mar 15, 2009 at 6:49 PM, Jeff Sickel j...@corpus-callosum.com wrote:
I've just
is it a shortcoming compared to unix world? these logs
are not sacrosanct.
linux typically uses log daemons to do the actual logging.
unless they are encrypting all those channels, even from
untrusted agents like smtp daemons, i don't know how you
provide better security. actually plan 9 has
note that those files are append-only.
logs on unix are writeable by everyone:
[rminn...@panzer ~]$ logger -p kern.err JUNK
[rminn...@panzer ~]$ sudo tail -f /var/log/messages
Mar 16 04:15:03 Panzer rminnich: JUNK
ron
On Sun, Mar 15, 2009 at 11:18 PM, ron minnich rminn...@gmail.com wrote:
note that those files are append-only.
logs on unix are writeable by everyone:
[rminn...@panzer ~]$ logger -p kern.err JUNK
[rminn...@panzer ~]$ sudo tail -f /var/log/messages
Mar 16 04:15:03 Panzer rminnich: JUNK
On Sun, Mar 15, 2009 at 08:49:50PM -0500, Jeff Sickel wrote:
I've just built out a new Plan 9 cpu/auth server and noticed that others
are able to write to the logs. Is this intentional or just an
oversight?
It is intentional, AFAIK.
An alternative for the paranoid perhaps would be to make
Hi!
On Sun, Mar 15, 2009 at 11:55:39PM -0400, J.R. Mauro wrote:
logs on unix are writeable by everyone:
[rminn...@panzer ~]$ logger -p kern.err JUNK
[rminn...@panzer ~]$ sudo tail -f /var/log/messages
This didn't work on my linux box. I actually have:
% ls -l /var/log/messages
-rw---
ah, not all are append only...
cpu% ls -lm /sys/log/httpd/clf
[jas] --rw-rw-rw- M 2936 sys sys 0 Mar 15 20:41 /sys/log/httpd/clf
As for paranoia--just more proof I need to stop mucking w/ Linux and
read more of the Plan 9 docs again.
-jas
11 matches
Mail list logo