Bug 1651394

Summary: Log directory not readable by members of the suricata group
Product: [Fedora] Fedora Reporter: Jason Ish <ish>
Component: suricataAssignee: Steve Grubb <sgrubb>
Status: CLOSED RAWHIDE QA Contact: Fedora Extras Quality Assurance <extras-qa>
Severity: low Docs Contact:
Priority: unspecified    
Version: rawhideCC: athmanem, jmlich83, jtfas90, sgrubb
Target Milestone: ---   
Target Release: ---   
Hardware: All   
OS: All   
Whiteboard:
Fixed In Version: Doc Type: If docs needed, set a value
Doc Text:
Story Points: ---
Clone Of: Environment:
Last Closed: 2018-11-20 23:06:44 UTC Type: Bug
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: --- Target Upstream Version:
Embargoed:

Description Jason Ish 2018-11-19 22:23:49 UTC 
Description of problem:

/var/log/suricata is has a group of suricata but is not group readable by default. It would be useful for utilities that monitor the logs to gain access by being part of the suricata group without yum post actions.

Please consider making this directory group readable by default. The files contained within are already group readable by default.
Comment 1 Steve Grubb 2018-11-20 21:25:38 UTC 
In the spec file, we have:
attr(750,suricata,root) %dir %{_var}/log/%{name}

Are you wanting it to be:
%attr(750,suricata,suricata) %dir %{_var}/log/%{name}
Comment 2 Jason Ish 2018-11-20 21:48:51 UTC 
Yes, exactly.