Why not permit read access for all in /var/log?
The /var/log files contain logged data, http://tldp.org/LDP/Linux-Filesystem-Hierarchy/html/var.html , important to note-
"/var/log/wtmp, which logs all logins and logouts into the system"
"/var/log/messages, where all kernel and system program message are usually stored"
These areas contain tons of detailed information about your system, and if even read by an outside service, could be used to compromise your whole system. I would advise not to change the permissions on this folder.
Related videos on Youtube
jefe goode
Updated on September 18, 2022Comments
-
jefe goode almost 2 years
There are many log files in
/var/log
that I do not have permission to read with my normal user. I have to usesudo
to add read permission first. It's getting annoying, especially having to repeat the same thing on different machines.Is there a good reason for this?
-
jefe goode about 12 yearsWell yes, I have only changed specific permissions for example, for the
/var/log/lighttpd
folder. -
jefe goode about 12 yearsI will accept your answer but as I need constant access to those logs it's too inconvenient not to change the permissions there and I can't imagine the information would compromise anything.
-
Mateo about 12 yearsHere is a link for making various shortcuts for opening files as root, maketecheasier.com/…