Bug 750263

Summary: logrotate complains about /var/log/news/ permissions
Product: [openSUSE] openSUSE 12.1 Reporter: Christian Boltz <suse-beta>
Component: BasesystemAssignee: Dr. Werner Fink <werner>
Status: RESOLVED FIXED QA Contact: E-mail List <qa-bugs>
Severity: Normal    
Priority: P5 - None CC: suse-beta
Version: Final   
Target Milestone: ---   
Hardware: Other   
OS: openSUSE 12.1   
Whiteboard: maint:released:sle10-sp4:46029 maint:released:sle11-sp1:46027
Found By: Beta-Customer Services Priority:
Business Priority: Blocker: ---
Marketing QA Status: --- IT Deployment: ---

Description Christian Boltz 2012-03-03 00:01:16 UTC 
running logrotate results in the following error message:

error: "/var/log/news" has insecure permissions. It must be owned and be writable by root only to avoid security issues. Please fix the directory permissions or set the "su" directive in the config file.

There are two possible fixes:
a) chown root:root /var/log/news/
b) add "su news news" to the /var/log/news/news.* section in /etc/logrotate/sysconfig
Comment 1 Dr. Werner Fink 2012-03-06 12:36:30 UTC 
Changed and submitted
Comment 2 Bernhard Wiedemann 2012-03-06 13:00:18 UTC 
This is an autogenerated message for OBS integration:
This bug (750263) was mentioned in
https://build.opensuse.org/request/show/108167 Factory / syslogd
Comment 3 Bernhard Wiedemann 2012-03-07 15:00:09 UTC 
This is an autogenerated message for OBS integration:
This bug (750263) was mentioned in
https://build.opensuse.org/request/show/108379 Factory / syslogd
Comment 4 Swamp Workflow Management 2012-03-19 14:08:34 UTC 
Update released for: klogd, syslogd
Products:
SLE-SERVER 10-SP3-TERADATA (x86_64)
Comment 5 Swamp Workflow Management 2012-03-19 14:09:12 UTC 
Update released for: klogd, syslogd
Products:
SLE-DESKTOP 10-SP4 (i386, x86_64)
SLE-SDK 10-SP4 (i386, ia64, ppc, s390x, x86_64)
SLE-SERVER 10-SP4 (i386, ia64, ppc, s390x, x86_64)
Comment 6 Christian Boltz 2012-03-19 23:39:55 UTC 
Thanks for fixing this in Factory (and SLE, which isn't my main target ;-)

Can you submit the updated package to 12.1:Update too, please? Just re-using the changes from SR 108379 should do the job ;-)
Comment 7 Dr. Werner Fink 2012-03-20 09:21:53 UTC 
already done ... for both 11.4 and 12.1, AFAICS the SR 109000 and SR 108999
had been accepted
Comment 8 Swamp Workflow Management 2012-03-23 16:15:14 UTC 
Update released for: klogd, syslogd, syslogd-debuginfo, syslogd-debugsource
Products:
SLE-DEBUGINFO 11-SP1 (i386, ia64, ppc64, s390x, x86_64)
SLE-DESKTOP 11-SP1 (i386, x86_64)
SLE-DESKTOP 11-SP1-FOR-SP2 (i386, x86_64)
SLE-SDK 11-SP1 (i386, ia64, ppc64, s390x, x86_64)
SLE-SDK 11-SP1-FOR-SP2 (i386, ia64, ppc64, s390x, x86_64)
SLE-SERVER 11-SP1 (i386, ia64, ppc64, s390x, x86_64)
SLE-SERVER 11-SP1-FOR-SP2 (i386, ia64, ppc64, s390x, x86_64)
SLE-SERVER 11-SP1-TERADATA (x86_64)
SLES4VMWARE 11-SP1 (i386, x86_64)
Comment 9 Swamp Workflow Management 2012-03-24 02:08:24 UTC 
SUSE-RU-2012:0410-1: An update that has one recommended fix can now be installed.

Category: recommended (moderate)
Bug References: 750263
CVE References: 
Sources used:
SUSE Linux Enterprise Software Development Kit 11 SP2 (src):    syslogd-1.4.1-708.39.1
SUSE Linux Enterprise Software Development Kit 11 SP1 (src):    syslogd-1.4.1-708.39.1
SUSE Linux Enterprise Server 11 SP2 (src):    syslogd-1.4.1-708.39.1
SUSE Linux Enterprise Server 11 SP1 for VMware (src):    syslogd-1.4.1-708.39.1
SUSE Linux Enterprise Server 11 SP1 (src):    syslogd-1.4.1-708.39.1
SUSE Linux Enterprise Desktop 11 SP2 (src):    syslogd-1.4.1-708.39.1
SUSE Linux Enterprise Desktop 11 SP1 (src):    syslogd-1.4.1-708.39.1

Product List: SUSE Linux Enterprise Software Development Kit 11 SP2
SUSE Linux Enterprise Software Development Kit 11 SP1
SUSE Linux Enterprise Server 11 SP2
SUSE Linux Enterprise Server 11 SP1 for VMware
SUSE Linux Enterprise Server 11 SP1
SUSE Linux Enterprise Desktop 11 SP2
SUSE Linux Enterprise Desktop 11 SP1
Comment 10 Swamp Workflow Management 2012-04-02 10:08:36 UTC 
openSUSE-RU-2012:0442-1: An update that has two recommended fixes can now be installed.

Category: recommended (important)
Bug References: 678434,750263
CVE References: 
Sources used:
openSUSE 12.1 (src):    syslogd-1.4.1-750.755.1
openSUSE 11.4 (src):    syslogd-1.4.1-735.1