[Debian-med-packaging] Bug#825119: jmodeltest: creates world writable /var/log/jmodeltest

[Andreas Tille]

Hi Andreas,

thanks for running these tests.  Could you be please be more verbose in
how far it is a problem if a program enables users to write logs on a
collective place which is the intention of enabling users to write
there?

I confirm that its possible for other users to delete / change logs.
Well, yes, that could happen but its not security relevant in my eyes.
Any better suggestion is welcome.

Kind regards

     Andreas.  

-- 
http://fam-tille.de