Univention Bugzilla – Bug 47015
01_base.26check_logfiles_general
Last modified: 2018-06-06 16:16:31 CEST
fails in update test with [2018-05-15 18:42:05.867443] ***Searching for world-readable logfiles: [2018-05-15 18:42:05.871377] Some potentially sensitive log files are world-readable: [2018-05-15 18:42:05.873906] -rw-r--r-- 1 nagios nagios 19829 Mai 15 18:35 /var/log/nagios/nagios.log
This is an actual bug, in 4.2 the /var/log/nagios3/nagios.log has 644. During the update to 4.3 we create the new log file with proper permissions create_logfile /var/log/nagios/nagios.log "nagios:nagios" 640 but after that mv the old file to new new localtion, including the old permissions. FIX: call create_logfile after the "move" stuff univention-nagios dc42190d4efb170e626b79d624c528a33e12f99a yaml 6773337d4ed0588a7681df090270ebc6eebe0436
OK: create and set logfile permission after other manipulations in univention-nagios-server.postinst, fixing permissions. OK: yaml Verified
<http://errata.software-univention.de/ucs/4.3/101.html>