[bug#54309] What is the process from here?

guix-patches

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[bug#54309] What is the process from here?

From:	Liliana Marie Prikler
Subject:	[bug#54309] What is the process from here?
Date:	Tue, 22 Mar 2022 21:06:32 +0100
User-agent:	Evolution 3.42.1

Am Dienstag, dem 22.03.2022 um 17:50 +0100 schrieb fesoj000:
> On 3/20/22 12:09 AM, Maxime Devos wrote:
> > Liliana Marie Prikler schreef op vr 18-03-2022 om 23:36 [+0100]:
> > > > +(define (auditd-activation config)
> > > > +  (with-imported-modules '((guix build utils))
> > > > +    #~(begin
> > > > +        (use-modules (guix build utils))
> > > > +        (let ((var-log-audit "/var/log/audit"))
> > > > +          (umask #o077)
> > > > +          (mkdir-p var-log-audit)))))
> > > > +
> > > This would also apply umask 077 to /var and /var/log if those
> > > don't already exist.  More importantly, code executed after that
> > > will also inherit the umask, which I don't think is the intended
> > > consequence.
> > 
> > More concretely, the procedure 'mkdir-p/perms' would address the
> > umask issue, but not the potential ‘oops too restrictive
> > permissions for /var and /var/log' issue.
> Ok, i can assume that a future version of 'mkdir-p/perms' will handle
> the umask.
> 
> Should the activation now handle potential permission problems from
> past activations and auditd starts? Can you try to explain in more
> detail please?
My personal solution would be to use (mkdir-p "/var/log") followed by
(mkdir "/var/log/audit" #o700).

Cheers

[Prev in Thread]

Current Thread

[Next in Thread]

[bug#54309] [PATCH] services: auditd: use exclusive log directory for auditd, (continued)
- [bug#54309] [PATCH] services: auditd: use exclusive log directory for auditd, fesoj000, 2022/03/10
- [bug#54309] What is the process from here?, fesoj000, 2022/03/18
  - [bug#54309] What is the process from here?, Liliana Marie Prikler, 2022/03/18
    - [bug#54309] What is the process from here?, fesoj000, 2022/03/18
    - [bug#54309] What is the process from here?, Liliana Marie Prikler, 2022/03/18
    - [bug#54309] What is the process from here?, fesoj000, 2022/03/19
    - [bug#54309] What is the process from here?, Maxime Devos, 2022/03/19
    - [bug#54309] What is the process from here?, fesoj000, 2022/03/22
    - [bug#54309] What is the process from here?, Liliana Marie Prikler <=
- [bug#54309] [PATCH] services: auditd: use exclusive log directory for auditd, fesoj000, 2022/03/19
  - [bug#54309] [PATCH] services: auditd: use exclusive log directory for auditd, Maxime Devos, 2022/03/19
    - [bug#54309] [PATCH] services: auditd: use exclusive log directory for auditd, fesoj000, 2022/03/20
    - [bug#54309] [PATCH] services: auditd: use exclusive log directory for auditd, Maxime Devos, 2022/03/20
    - [bug#54309] [PATCH] services: auditd: use exclusive log directory for auditd, Maxime Devos, 2022/03/20
- [bug#54309] [PATCHv2] services: auditd: use exclusive log directory for auditd, fesoj000, 2022/03/23
- [bug#54309] [PATCHv3] services: auditd: use exclusive log directory for auditd, fesoj000, 2022/03/23

Prev by Date: [bug#54522] [PATCH] gnu: mesa: Update to 21.3.8.
Next by Date: bug#49943: [PATCH] gnu: Add openboard
Previous by thread: [bug#54309] What is the process from here?
Next by thread: [bug#54309] [PATCH] services: auditd: use exclusive log directory for auditd
Index(es):
- Date
- Thread