Hi, today I've noticed inconsistencies with logfile permissions and logrotate which leads me to think about a feature request. For example /var/log/localmessages seems to be created at installation time with 0644 root:root But the first log rotation changed this to 0640 and my users complained about that. The permission change is caused by /etc/logrotate.d/syslog: .... /var/log/warn /var/log/messages /var/log/allmessages /var/log/localmessages /var/log/firewall /var/log/acpid /var/log/NetworkManager { [...] create 640 root root [...] } So there are at least two places where these permissions are defined, one at installation time and the other in /etc/logrotate* Since "man logrotate" says: create mode owner group [...] Any of the log file attributes may be omitted, in which case those attributes for the new file will use the same values as the original log file for the omitted attributes. I would suggest to change logrotate config from "create 640 root root" to just "create" and to track these logfiles within /etc/permissions* too. This would make things more generic, simple and consistent. What do you think? cu, Rudi -- To unsubscribe, e-mail: opensuse-factory+unsubscribe@opensuse.org For additional commands, e-mail: opensuse-factory+help@opensuse.org