Description of problem: The process accounting package does not create the initial pacct process accounting data file with secure permissions. If logrotate is installed, subsequent pacct files are created with properly secured permissions by logrotate due to the "create 0600 root root" line in /etc/logrotate.d/psacct, but the permissions on the first pacct file created remain the same. Due to the fact that /var/account is readable by all users, the first pacct file created remains readable by all users. This can disclose sensitive system information to unprivileged users. Steps to Reproduce: 1. Install psacct 2. ls -l /var/account/pacct Proposed .spec file patch: * creating pacct file with secure (0600) permissions touch %{accounting_logdir}/pacct chmod 600 %{accounting_logdir}/pacct * ghosting %attr(0600,root,root) %ghost %config %{accounting_logdir}/pacct