Thanks for the report!

Please note that --log is no longer mandatory, see bug 1530031.

We do:

        touch "${LOG}"
        chmod 0600 "${LOG}"

So the file is not really corrupted, and can be fixed by a mere 'chmod 666 /dev/null'.

It's done (chmod 600) for security reasons. If we happen to leak there some password, I'd rather not have it exposed.

I am not sure what the exact criteria should be, for not doing this. Just hard-code '/dev/null'? Not sure this is good enough, or even makes sense.

Do you think we should also condition the chmod on $FILE? This is definitely more sensitive, as it definitely includes passwords (by design).

In short, I can see your point, but am not sure a fix is really needed, considering the amount of potential future maintenance work this might require...

The documentation text flag should only be set after 'doc text' field is provided. Please provide the documentation text and set the flag to '?' again.

Thanks for the fast answer!

I understand your point and indeed hardcoding /dev/null is rather an ugly solution.

If this is done for security reasons, probably the simplest way to handle the issue is just documenting it and warning against using /dev/null as the logfile?

Otherwise I wouldn't waste much time with it either.

$FILE should definitely be chmoded as well!

Frankly, I think your current bug report is enough as "documentation" - people that run into this flow and search the net, will now likely find it. I do not believe people will notice it by mere casual reading of docs, or care much, most of the time, so this will needlessly make also docs longer and harder to read.

Ok, AFAIC you can close the bug if you wish.

OK, closing. Thanks again for the report!