Description of problem:
logcheck doesn't have permissions to read logs
Version-Release number of selected component (if applicable):
Steps to Reproduce:
1.sudo -u logcheck logcheck -o -t
Error: Could not run logtail or save output.
Summary of interesting log messages
chown root:adm /var/log/messages; chmod 640 /var/log/messages
but something change them back withun seconds.
setfacl -m u:logcheck:r /var/log/messages
but the effect permissions didn't change - no acl on default mounts.
Yes, that's a known issue, you need some additions tweaking; sadly, there's not much I can do about it.
*** This bug has been marked as a duplicate of bug 1062147 ***
Then why close the bug? Why not leave it open until someone fixes it, or removes the useless package?
It's a configuration issue on your system.
Add to /etc/logrotate.d/syslog:
create 0640 root adm
that makes /var/log/messages to be created with the appropriate ownerships.