Bug#759604: Any problem with making auditd log readable by the adm group?

Control: tags -1 patch On Tue, Jun 28, 2016 at 11:06:57AM +0200, Nicolas Braud-Santoni wrote: > > It seems to me we have two issues at play here: > - auditd violating the adm group convention; > - apparmor-notify using a suboptimal mechanism to stream auditd logs. > > Could we fix the permission

Bug#759604: Any problem with making auditd log readable by the adm group?

Hi, On Wed, May 11, 2016 at 08:36:44AM -0400, Steve Grubb wrote: > On Wednesday, May 11, 2016 09:55:33 AM Laurent Bigonville wrote: > > Le 09/05/16 à 21:07, intrigeri a écrit : > > > in Debian, the convention for many log files is to make them readable > > > by members of the adm group. We're cons

Bug#759604: Any problem with making auditd log readable by the adm group?

On Wednesday, May 11, 2016 09:55:33 AM Laurent Bigonville wrote: > Le 09/05/16 à 21:07, intrigeri a écrit : > > Hi, > > Hey, > > > in Debian, the convention for many log files is to make them readable > > by members of the adm group. We're considering doing the same for the > > auditd logs, in or

Bug#759604: Any problem with making auditd log readable by the adm group?

Le 09/05/16 à 21:07, intrigeri a écrit : Hi, Hey, in Debian, the convention for many log files is to make them readable by members of the adm group. We're considering doing the same for the auditd logs, in order to make apparmor-notify work out-of-the-box. Shouldn't apparmor-notify use the audi

Bug#759604: Any problem with making auditd log readable by the adm group?

Hi, Steve Grubb wrote (09 May 2016 19:33:16 GMT) : > I can't think of any problems. Just set the log_group = adm in auditd.conf > and > fixup the packaging to have that as the group owner. Auditd should create the > logs with 0640 permissions. It's good to see that upstream is happy with that

Bug#759604: Any problem with making auditd log readable by the adm group?

Steve Grubb wrote (09 May 2016 19:33:16 GMT) : > On Monday, May 09, 2016 09:07:11 PM intrigeri wrote: >> in Debian, the convention for many log files is to make them readable >> by members of the adm group. We're considering doing the same for the >> auditd logs, in order to make apparmor-notify wo

Bug#759604: Any problem with making auditd log readable by the adm group?

On Monday, May 09, 2016 09:07:11 PM intrigeri wrote: > in Debian, the convention for many log files is to make them readable > by members of the adm group. We're considering doing the same for the > auditd logs, in order to make apparmor-notify work out-of-the-box. > > The maintainer of auditd in

Bug#759604: Any problem with making auditd log readable by the adm group?

Hi, in Debian, the convention for many log files is to make them readable by members of the adm group. We're considering doing the same for the auditd logs, in order to make apparmor-notify work out-of-the-box. The maintainer of auditd in Debian would like to know what's your take on it. What kin