Bug 1083975 - logrotate complains about insecure /var/log/rhn permissions
Summary: logrotate complains about insecure /var/log/rhn permissions
Keywords:
Status: CLOSED CURRENTRELEASE
Alias: None
Product: Spacewalk
Classification: Community
Component: API
Version: 2.1
Hardware: Unspecified
OS: Unspecified
unspecified
unspecified
Target Milestone: ---
Assignee: Jan Dobes
QA Contact: Red Hat Satellite QA List
URL:
Whiteboard:
Depends On: 1056515
Blocks: space21 space22
TreeView+ depends on / blocked
 
Reported: 2014-04-03 10:38 UTC by Jan Hutař
Modified: 2014-07-17 08:41 UTC (History)
2 users (show)

Fixed In Version: spacewalk-java-2.2.35-1
Clone Of: 1056515
Environment:
Last Closed: 2014-07-17 08:41:16 UTC
Embargoed:

Attachments (Terms of Use)

Description Jan Hutař 2014-04-03 10:38:14 UTC 
Now I'm getting only one line:

error: skipping "/var/log/rhn/rhn_web_api.log" because parent directory has insecure permissions (It's world writable or writable by group which is not "root") Set "su" directive in config file to tell logrotate which user/group should be used for rotation.

logrotate-3.8.4-3.fc19.x86_64
spacewalk-backend-2.2.15-1.fc19.noarch




+++ This bug was initially created as a clone of Bug #1056515 +++

Description of problem:
Running logrotate on system with Spacewalk installed produces errors.


Version-Release number of selected component (if applicable):
logrotate-3.8.4-3.fc19.x86_64
spacewalk-backend-2.1.42-1.fc19.noarch


How reproducible:
always


Steps to Reproduce:
1. # cat /tmp/tmp.x9sya0HdOa
rotate 40
size=1k
create
missingok
include /etc/logrotate.d
2. # logrotate -f /tmp/tmp.x9sya0HdOa


Actual results:
# logrotate -f /tmp/tmp.x9sya0HdOa
error: skipping "/var/log/rhn/rhn_server_app.log" because parent directory has insecure permissions (It's world writable or writable by group which is not "root") Set "su" directive in config file to tell logrotate which user/group should be used for rotation.
error: skipping "/var/log/rhn/rhn_server_applet.log" because parent directory has insecure permissions (It's world writable or writable by group which is not "root") Set "su" directive in config file to tell logrotate which user/group should be used for rotation.
error: skipping "/var/log/rhn/rhn_config_management.log" because parent directory has insecure permissions (It's world writable or writable by group which is not "root") Set "su" directive in config file to tell logrotate which user/group should be used for rotation.
error: skipping "/var/log/rhn/rhn_config_management_tool.log" because parent directory has insecure permissions (It's world writable or writable by group which is not "root") Set "su" directive in config file to tell logrotate which user/group should be used for rotation.
error: skipping "/var/log/rhn/rhn_server_sat.log" because parent directory has insecure permissions (It's world writable or writable by group which is not "root") Set "su" directive in config file to tell logrotate which user/group should be used for rotation.
error: skipping "/var/log/rhn/rhn_sat_export_internal.log" because parent directory has insecure permissions (It's world writable or writable by group which is not "root") Set "su" directive in config file to tell logrotate which user/group should be used for rotation.
error: skipping "/var/log/rhn/rhn_upload_package_push.log" because parent directory has insecure permissions (It's world writable or writable by group which is not "root") Set "su" directive in config file to tell logrotate which user/group should be used for rotation.
error: skipping "/var/log/rhn/rhn_server.log" because parent directory has insecure permissions (It's world writable or writable by group which is not "root") Set "su" directive in config file to tell logrotate which user/group should be used for rotation.
error: skipping "/var/log/rhn/rhn_server_satellite.log" because parent directory has insecure permissions (It's world writable or writable by group which is not "root") Set "su" directive in config file to tell logrotate which user/group should be used for rotation.
error: skipping "/var/log/rhn/rhn_server_xmlrpc.log" because parent directory has insecure permissions (It's world writable or writable by group which is not "root") Set "su" directive in config file to tell logrotate which user/group should be used for rotation.
# echo $?
1


Expected results:
Should not print any errors and should return 0

--- Additional comment from Jan Dobes on 2014-01-28 11:10:14 EST ---

It depends on version of logrotate. I checked multiple versions and it occurs only with logrotate >= 3.8.0, i. e. versions in latest Fedora's. In RHEL[56] are older versions.

--- Additional comment from Jan Dobes on 2014-02-06 11:39:23 EST ---

fixed in master by commit:
  66509c2cb11dfd6f68208f13d904cdafc68a79d6

--- Additional comment from Matej Kollar on 2014-03-04 08:08:11 EST ---

Spacewalk 2.1 has been released.
https://fedorahosted.org/spacewalk/wiki/ReleaseNotes21

--- Additional comment from Matej Kollar on 2014-03-04 08:09:02 EST ---

Spacewalk 2.1 has been released.
https://fedorahosted.org/spacewalk/wiki/ReleaseNotes21
Comment 1 Jan Dobes 2014-04-03 11:42:04 UTC 
fixed in spacewalk master:
  89c07aa94beab1813c38254db82dc835d0b091a0
Comment 2 Milan Zázrivec 2014-07-17 08:41:16 UTC 
Spacewalk 2.2 has been released:

    https://fedorahosted.org/spacewalk/wiki/ReleaseNotes22
Note You need to log in before you can comment on or make changes to this bug.