Subject: Re: opinions on /var/log permissions/owners
To: None <perry@piermont.com>
From: Luke Mewburn <lukem@connect.com.au>
List: tech-security
Date: 04/02/1997 15:59:38
"Perry E. Metzger" writes:
> In adding the missing /var/log/authlog and /var/log/xferlog to
> src/etc/Makefile (their absense was noted after my last snapshot), I
> started wondering a bit about our default permissions.
> 
> 1) Should all the log files be owned by bin.bin as they are now?
> 2) What permissions should they have?

1)	root.wheel, especially if the perms are 0644
	if the user or group to be restricted to limit users
	who can do it, set the perms as you see fit
	root.wheel is protected over nfs?

2)	/var/log/authlog: 600
	/var/log/xferlog: 640
	*: 644