Description of problem: The following errors get sent to root's email when logrotate runs: Actual results: /etc/cron.daily/logrotate: error: skipping "/var/log/candlepin/audit.log" because parent directory has insecure permissions (It's world writable or writable by group which is not "root") Set "su" directive in config file to tell logrotate which user/group should be used for rotation. error: skipping "/var/log/candlepin/candlepin.log" because parent directory has insecure permissions (It's world writable or writable by group which is not "root") Set "su" directive in config file to tell logrotate which user/group should be used for rotation. error: skipping "/var/log/candlepin/cpdb.log" because parent directory has insecure permissions (It's world writable or writable by group which is not "root") Set "su" directive in config file to tell logrotate which user/group should be used for rotation. error: skipping "/var/log/candlepin/cpinit.log" because parent directory has insecure permissions (It's world writable or writable by group which is not "root") Set "su" directive in config file to tell logrotate which user/group should be used for rotation. error: skipping "/var/log/candlepin/error.log" because parent directory has insecure permissions (It's world writable or writable by group which is not "root") Set "su" directive in config file to tell logrotate which user/group should be used for rotation. error: skipping "/var/log/tomcat/catalina.out" because parent directory has insecure permissions (It's world writable or writable by group which is not "root") Set "su" directive in config file to tell logrotate which user/group should be used for rotation. Expected results: Log rotate to work Additional info: I found this bug was filed upstream already, http://projects.theforeman.org/issues/8777 Here's the patch I applied to my local system. Could this get added to the next available errata release? --- /root/tomcat.logrotate 2015-04-08 09:46:51.781143412 -0400 +++ tomcat 2015-04-08 09:45:42.933128364 -0400 @@ -1,4 +1,5 @@ /var/log/tomcat/catalina.out { + su tomcat tomcat copytruncate weekly rotate 52 --- /root/candlepin.logrotate 2015-04-08 09:46:50.330143095 -0400 +++ candlepin 2015-04-08 09:45:31.549125882 -0400 @@ -1,4 +1,5 @@ /var/log/candlepin/*.log { + su tomcat tomcat copytruncate weekly rotate 52
Since this issue was entered in Red Hat Bugzilla, the release flag has been set to ? to ensure that it is properly evaluated for this release.
Issue is unchanged in 6.1.4.
Also occurs in RHCI TP2 RC9
and also in QCI TP3 RC2
*** Bug 1291472 has been marked as a duplicate of this bug. ***
This requires candlepin 0.9.54.6 or later.
Moving to POST, please pull in 0.9.54.6.
*** Bug 1142677 has been marked as a duplicate of this bug. ***
Appears to be working in SNAP 16. These messages are no longer appearing in root mail.
Since the problem described in this bug report should be resolved in a recent advisory, it has been closed with a resolution of ERRATA. For information on the advisory, and where to find the updated files, follow the link below. If the solution does not work for you, open a new bug report. https://access.redhat.com/errata/RHBA-2016:1501