Yamaban wrote:
On Thu, 24 Mar 2016 21:49, Carlos E. R. wrote:
On Thursday, 2016-03-24 at 21:34 +0100, Per Jessen wrote:
Another completely separate question - it seems to me that journalctl gives any ordinary user access to (what would otherwise be) log data? That's not good. I guess journalctl ought to be only accessible by root?
Not complete access. Some entries you can read, some you can't. I haven't figured out which entries I get or how to change the behaviour, because I typically add my admin user to the root group in order to be able to read the logs as that user.
Hint on that: look at "ls -l /run/log/journal/*/" most often there are some bits for access missing, or just set wrong.
Yup, it's world-readable. Same in Leap421. # ls -l /run/log/journal/*/ total 8192 -rwxr-xr-x 1 root systemd-journal 8388608 Mar 24 22:27 system.journal /Per -- To unsubscribe, e-mail: opensuse+unsubscribe@opensuse.org To contact the owner, e-mail: opensuse+owner@opensuse.org