+++ This bug is a downstream clone. The original bug is: +++ +++ bug 1476755 +++ ====================================================================== Description of problem: Red Hat Insights is reporting the fact that users other than root can read /var/log/cron. It suggests tightening these up to the default permissions for cron logs on RHEL, which are read/write by root only. Version-Release number of selected component (if applicable): rhvm-appliance-4.1.20170511.0-1.el7.noarch How reproducible: Always Steps to Reproduce: 1. ls -l /var/log/cron 2. 3. Actual results: [root@rhvm ~]# ls -l /var/log/cron -rw-r--r--. 1 root root 8564 Jul 31 07:01 /var/log/cron Expected results: [root@ocp ~]# ls -l /var/log/cron -rw-------. 1 root root 6870 Jul 31 07:01 /var/log/cron Additional info: (Originally by Anthony Green)
Verified with: rhvm-appliance-20170811.0-1.x86_64.rhevm.ova # ls -l /var/log/cron -rw-------. 1 root root 1757 Aug 16 10:16 /var/log/cron
Since the problem described in this bug report should be resolved in a recent advisory, it has been closed with a resolution of ERRATA. For information on the advisory, and where to find the updated files, follow the link below. If the solution does not work for you, open a new bug report. https://access.redhat.com/errata/RHEA-2017:2528