[syslog-ng] enforcing file permissions

Scheidler, Balázs balazs.scheidler at balabit.com
Tue Feb 20 19:28:17 UTC 2018


Syslog-ng sets permissions at open time, but will do so every time when it
does that. Adding this function would require firing up a timer and
changing perms every time.

But i don't see why this is not possible bits an external script.
Especially as syslog-ng has no means to go back to templated files. Eg
names that contain $HOST.

On Feb 20, 2018 17:49, "Nik Ambrosch" <nik at ambrosch.com> wrote:

> i know it's possible to create a file with permissions using owner() and
> group() however if the file already exists with different permissions or
> the permissions are changed later syslog-ng does not change the permissions
> back.
>
> in a future release is it possible to change the behavior of owner() and
> group() to enforce permissions or possibly add a new option like
> enforce-permissions(true) with a default of false (to mimic the current
> behavior)?
>
> maybe something exists already and i'm just missing it :)
>
> thanks all.
>
>
> ____________________________________________________________
> __________________
> Member info: https://lists.balabit.hu/mailman/listinfo/syslog-ng
> Documentation: http://www.balabit.com/support/documentation/?
> product=syslog-ng
> FAQ: http://www.balabit.com/wiki/syslog-ng-faq
>
>
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.balabit.hu/pipermail/syslog-ng/attachments/20180220/33f138b9/attachment.html>


More information about the syslog-ng mailing list