Solved

Mac OS /var/log/system.log permissions / Time Machine backup tracking

Posted on 2012-03-14
4
402 Views
Last Modified: 2012-10-09
We're using Time Machine to back up our Macbooks to a network drive.  On each Macbook, I have a cron job that queries the /var/log/system.log file for "Backup completed" and dumps the output to a text file on a network drive.  Every night I have a script that gathers all of these text files and generates an email so that we know who is "up to date" on Time Machine backups.

This all worked well until some Mac OS update changed the permissions on the /var/log folder and log files inside of it - specifically system.log.

Our users are not local admin's and I'm relying on them to have read access on the system.log file in order for the query to work.

I can give them R or RW permission on the /var/log folder and apply to all contents of the folder and it works fine until the system rotates the logs and creates a new file.  At that point the new system.log file has the following permissions:

system RW
admin R
everyone No Access

Is there a way to modify the log rotation process so that it doesn't screw up the permissions on system.log?  I've tried investigating the jobs in /etc/periodic/daily and the com.apple.newsyslog.plist file but I'm drawing blanks.

Does anyone have experience with this?


The most simple way to frame the question is:  Is there a way to give standard OS X users access to the system.log file, either via direct access or the "Console" app?

Alternatively, does anyone have other suggestions on "tracking" Time Machine backups?  We've tried using GeekTool with the "syslog -F ...." method but it's not been reliable and is also broken with OS X 10.7.
0
Comment
Question by:weycotech
  • 2
4 Comments
 
LVL 13

Expert Comment

by:maximus5328
Comment Utility
I would try to create ACL for /var/logs folder and inherit permissions to newly created files.
0
 
LVL 10

Expert Comment

by:robertcerny
Comment Utility
You can alter settings of /etc/sudoers file to allow ordinary users check contents of requested file.
0
 

Accepted Solution

by:
weycotech earned 0 total points
Comment Utility
Sorry for the delayed response on this.  Unfortunately for the proposed solutions, the permissions on the file and folder are still re-set by the OS every time the file is recreated.  We ended up switching to a different backup solution (Copiun) which has worked out well.
0
 

Author Closing Comment

by:weycotech
Comment Utility
-Problem not solved.  Switched backup solutions so it's no longer an issue.
0

Featured Post

Enabling OSINT in Activity Based Intelligence

Activity based intelligence (ABI) requires access to all available sources of data. Recorded Future allows analysts to observe structured data on the open, deep, and dark web.

Join & Write a Comment

A lot of new and distinct gadgets are making their appearance every other day. The latest gadget that has wooed the attention of all gadget lovers and non gadget lovers alike is the Smartwatch. This tiny gadget is capable of offering live access to …
Set up iPhone and iPad email signatures to always send in high-quality HTML with this step-by step guide.
Sending a Secure fax is easy with eFax Corporate (http://www.enterprise.efax.com). First, Just open a new email message.  In the To field, type your recipient's fax number @efaxsend.com. You can even send a secure international fax — just include t…
Polish reports in Access so they look terrific. Take yourself to another level. Equations, Back Color, Alternate Back Color. Write easy VBA Code. Tighten space to use less pages. Launch report from a menu, considering criteria only when it is filled…

763 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

7 Experts available now in Live!

Get 1:1 Help Now