Red Hat Bugzilla – Bug 49818
/var/lock has incorrect ownership
Last modified: 2014-03-16 22:22:03 EDT
From Bugzilla Helper:
User-Agent: Mozilla/4.77 [en] (X11; U; Linux 2.4.6-2smp i686; Nav)
Description of problem:
/var/lock is used by uucp, among others, to write lock files into.
Specifically, uucico (of uucp), will write temp PID files into
/var/lock. uucico runs suid/sgid uucp.uucp - /var/lock needs to
be group owned uucp, otherwise uucp (and other SGID applications which
should also be group uucp owned) which need to create/check tmp PID
files will fail.
Steps to Reproduce:
1. ls -l /var | grep lock
Actual Results: drwxr-xr-x 6 root root 1024 Jul 24 20:52
Expected Results: drwxrwxr-x 6 root uucp 4096 Jul 24 20:45
as a reference, check RH7.1 and all earlier releases.
This is intentional. Group writable /var/lock introduces too many security concerns.