2099669 – [cee/sd][Cephadm] error: skipping "/var/log/ceph/cephadm.log" because parent directory has insecure permissions. Set "su" directive in config file to tell logrotate which user/group should be uer/group should be used for rotation.

Bug 2099669 - [cee/sd][Cephadm] error: skipping "/var/log/ceph/cephadm.log" because parent directory has insecure permissions. Set "su" directive in config file to tell logrotate which user/group should be uer/group should be used for rotation.

Summary: [cee/sd][Cephadm] error: skipping "/var/log/ceph/cephadm.log" because parent ...

Keywords:
Status:	CLOSED DUPLICATE of bug 2099670
Alias:	None
Product:	Red Hat Ceph Storage
Classification:	Red Hat Storage
Component:	Cephadm
Sub Component:
Version:	5.0
Hardware:	x86_64
OS:	Linux
Priority:	unspecified
Severity:	low
Target Milestone:	---
Target Release:	6.1
Assignee:	Adam King
QA Contact:	Manasa
Docs Contact:	Anjana Suparna Sriram
URL:
Whiteboard:
Depends On:
Blocks:
TreeView+	depends on / blocked

Reported:	2022-06-21 13:09 UTC by Milind
Modified:	2022-09-27 12:43 UTC (History)
CC List:	1 user (show)
Fixed In Version:
Doc Type:	If docs needed, set a value
Doc Text:
Clone Of:
Environment:
Last Closed:	2022-09-27 12:43:56 UTC
Embargoed:
Dependent Products:

Attachments	(Terms of Use)

Links
System	ID	Private	Priority	Status	Summary	Last Updated
Red Hat Issue Tracker	RHCEPH-4592	0	None	None	None	2022-06-21 13:16:42 UTC

Description Milind 2022-06-21 13:09:51 UTC

Description of problem:
/etc/cron.daily/logrotate:

error: skipping "/var/log/ceph/cephadm.log" because parent directory has insecure permissions (It's world writable or writable by group which is not "root") Set "su" directive in config file to tell logrotate which user/group should be used for rotation.


Version-Release number of selected component (if applicable):
ceph version 16.2.0-152.el8cp

How reproducible:
Always

Steps to Reproduce:
1. see the /etc/logrotate.d/cephadm 
2. try to rotate the logs using command"logrotate /etc/logrotate.d/cephadm"
3. my /etc/logrotate.d/cephadm 

# cat /etc/logrotate.d/cephadm
==================================
# created by cephadm
/var/log/ceph/cephadm.log {
    rotate 7
    daily
    compress
    missingok
    notifempty
}
==================================

Actual results:
error: skipping "/var/log/ceph/cephadm.log" because parent directory has insecure permissions (It's world writable or writable by group which is not "root") Set "su" directive in config file to tell logrotate which user/group should be used for rotation.


Expected results:
logs should be rotated

Additional info:

Comment 1 Adam King 2022-09-27 12:43:56 UTC


*** This bug has been marked as a duplicate of bug 2099670 ***

Note You need to log in before you can comment on or make changes to this bug.