26 Dec
2007
26 Dec
'07
7:31 a.m.
On Mon, 24 Dec 2007 22:45:08 PST, Evan Rempel said:
Do you have security enhanced linux enables (SELinux). That will reset permission on a reboot.
No, SELinux will *not* do that. It does *not* reset permissions, ever. What it *will* do is fail an access if the security attributes aren't set correctly. So you'll try to open a file and get -EPERM. Please note that setting the syslog-ng.conf file to mode 666 basically gives all users an instant rootshell. Consider the following: 1) User puts "destination (file "/etc/passwd");" in the file. 2) User then uses 'logger "\nmyroot::0:0:::::/bin/bash", or similar. User now has a myroot userid with no password. Have a nice day. ;)