• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 445
  • Last Modified:

Question regarding logrotate

This the second part of the first question i created yesterday

so i want to grant  group_A  read only access to all file at /var/log

so on the logrotate.conf i add the following

/var/log/ {
    create 0644 Group_A

is it correct ?
1 Solution
If you wish to specify a group you must also specify the owner, so if the original owner is "root" use

 create 0644 root Group_A

Please not that with the above "others" (i.e. users who are neither owner of the file nor members of Group_A") will also be granted write accesss, so specifying the group (and the owner) is somehow unnecessary.

To deny access for others use

create 0640 root Group_A
c_hocklandAuthor Commented:
yeap , i changed to 0640. Perfect. many thanks !!
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

Join & Write a Comment

Featured Post

WEBINAR: GDPR Implemented - Tips & Lessons Learned

Join the WatchGuard team on Thursday, March 29th as we recount some valuable lessons learned in weighing the needs of a business against the new regulatory environment, look ahead at the two months left before implementation, and help you understand the steps you can take today!

Tackle projects and never again get stuck behind a technical roadblock.
Join Now