- Community Home
- >
- Servers and Operating Systems
- >
- Operating Systems
- >
- Operating System - HP-UX
- >
- Re: syslog error
Categories
Company
Local Language
Forums
Discussions
Forums
- Data Protection and Retention
- Entry Storage Systems
- Legacy
- Midrange and Enterprise Storage
- Storage Networking
- HPE Nimble Storage
Discussions
Discussions
Discussions
Forums
Forums
Discussions
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
- BladeSystem Infrastructure and Application Solutions
- Appliance Servers
- Alpha Servers
- BackOffice Products
- Internet Products
- HPE 9000 and HPE e3000 Servers
- Networking
- Netservers
- Secure OS Software for Linux
- Server Management (Insight Manager 7)
- Windows Server 2003
- Operating System - Tru64 Unix
- ProLiant Deployment and Provisioning
- Linux-Based Community / Regional
- Microsoft System Center Integration
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Community
Resources
Forums
Blogs
- Subscribe to RSS Feed
- Mark Topic as New
- Mark Topic as Read
- Float this Topic for Current User
- Bookmark
- Subscribe
- Printer Friendly Page
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО11-21-2009 08:12 AM
тАО11-21-2009 08:12 AM
syslog error
As the part of hardening i have to reassign the syslog with 600 permission.But we use a normal user to grep the syslog.log to list the login details for which we have script.
So i have set acl read permission for the normal user with syslog.log file.But its showing permission denied.I have tested with full acl permission(rwx).But no use.
My requirement is, i want to give 600 permission to syslog file and normal user should access the syslog file for login details.
Please suggest
Regards
himacs
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО11-21-2009 08:25 AM
тАО11-21-2009 08:25 AM
Re: syslog error
My requirement is, i want to give 600 permission to syslog file and normal user should access the syslog file for login details.<<<
by default syslog file permission has read access permission
Example :-
rw-r-r syslog.log
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО11-21-2009 08:30 AM
тАО11-21-2009 08:30 AM
Re: syslog error
if you give "600: permission to syslog"
normal user have no access i mean (r=read)
by default file permission should has below
rw-r-r syslog.log
# chmod 644 syslog.log
simple explanation of rwx
(r = read = 4)
(w = write = 2)
(x = excute = 1)
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО11-21-2009 08:33 AM
тАО11-21-2009 08:33 AM
Re: syslog error
Thanx for ur time..
defaukt permission is 644.
But as the part of hardening m making it as 600.
ANd m giving ACL permission to a normal user to read syslogs.But it showing permission denied.
regards
himacs
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО11-21-2009 08:44 AM
тАО11-21-2009 08:44 AM
Re: syslog error
never came across these kind of "hardening" ?
owner of the file is "root", I d'not see any point here. by default its "syslog.log" carries readonly permission for others /normal users
by default "syslog.log" which has "rw-r-r"
perfect - Its my understanding
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО11-21-2009 09:02 AM
тАО11-21-2009 09:02 AM
Re: syslog error
Hope this Helps,
http://forums13.itrc.hp.com/service/forums/questionanswer.do?admit=109447627+1258822839871+28353475&threadId=1046300
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО11-22-2009 03:05 AM
тАО11-22-2009 03:05 AM
Re: syslog error
Hi
please find the getacl output
/var/adm/syslog>getacl syslog.log
# file: syslog.log
# owner: root
# group: root
user::rw-
user:uxgsmc:rw- #effective:---
group::r-- #effective:---
class:---
other:---
/var/adm/syslog>more syslog.log
syslog.log: Permission denied
here its showing effective as ---.
Plz suggest
Regards
himacs
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО11-23-2009 01:42 AM
тАО11-23-2009 01:42 AM
Re: syslog error
it's a possible work around.