Bug#800947: ACL for /var/log/journal not set for group adm
Michael Biebl
biebl at debian.org
Tue Feb 2 22:21:42 GMT 2016
Control: tags -1 + pending
On Mon, 5 Oct 2015 12:26:02 +0200 =?UTF-8?Q?Rapha=c3=abl_Halimi?=
<raphael.halimi at gmail.com> wrote:
> Package: systemd
> Version: 226-4
>
> Hi,
>
> About persistent logging, README.Debian claims :
>
> "systemd will add an ACL for read permissions for users in the "adm" group."
>
> This is not working: after creating /var/log/journal with the "install"
> command as instructed in the README.Debian, and even after several
> reboots, the ACL is not set:
>
> raph at arche:~$ getfacl /var/log/journal/
...
While the idea of shipping /var/log/journal pre-configured in the
package is still an option, I now decided to apply a different fix.
I've cherry-picked two upstream commits which also apply the ACLs to
/var/log/journal (so newly created files inherit them directly) and to
exisiting system.journal files.
I've also updated the instructions in README.Debian (which now match
what's in man systemd-journald(8):
mkdir -p /var/log/journal
systemd-tmpfiles --create --prefix /var/log/journal
Those two command are now sufficient to setup the persistent journal
with the correct permissions and ACLs.
This will be part of the upcoming 228-5 release.
--
Why is it that all of the instruments seeking intelligent life in the
universe are pointed away from Earth?
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 819 bytes
Desc: OpenPGP digital signature
URL: <http://lists.alioth.debian.org/pipermail/pkg-systemd-maintainers/attachments/20160202/ff22d6c2/attachment.sig>
More information about the Pkg-systemd-maintainers
mailing list