Results 1 to 2 of 2

Thread: RSyslog Default File Permissions

  1. #1
    Join Date
    Apr 2011
    Beans
    1

    RSyslog Default File Permissions

    I just build a syslog server with the current version of Ubuntu. I'm having issues with the default file permissions. I can't seem to pinpoint what is setting the permissions on the logs that are getting created. My rsyslog.conf looks like this:


    $ModLoad imuxsock # provides support for local system logging
    $ModLoad imklog # provides kernel logging support (previously done by rklogd)
    #$ModLoad imtcp
    $ModLoad imudp
    #$ModLoad immark # provides --MARK-- message capability

    # Templates
    # log every host in its own directory
    $template RemoteHost,"/var/syslog/%HOSTNAME%/%$YEAR%/%$MONTH%-%$DAY%-syslog.log

    ### Rulesets

    # Remote Logging
    $RuleSet remote
    *.* ?RemoteHost

    $KLogPath /proc/kmsg

    ### Listeners

    # provides UDP syslog reception
    # bind ruleset to tcp listener
    $InputUDPServerBindRuleset remote
    # and activate it:
    $UDPServerRun 514


    # provides TCP syslog reception
    #$ModLoad imtcp
    #$InputTCPServerRun 514


    ###########################
    #### GLOBAL DIRECTIVES ####
    ###########################

    #
    # Use traditional timestamp format.
    # To enable high precision timestamps, comment out the following line.
    #
    $ActionFileDefaultTemplate RSYSLOG_TraditionalFileFormat

    # Filter duplicated messages
    $RepeatedMsgReduction on

    #
    # Set the default permissions for all log files.
    #
    $umask 0640
    $DirCreateMode 0640
    $FileCreateMode 0640
    $FileOwner syslog
    $FileGroup syslog-group
    $DirOwner syslog
    $DirGroup syslog-group
    $PrivDropToUser syslog
    $PrivDropToGroup syslog-group

    #
    # Include all config files in /etc/rsyslog.d/
    #
    $IncludeConfig /etc/rsyslog.d/*.conf


    From my understanding, umask sets the default "foundation" for the file permissions, then the DirCreateMode, FileCreateMode, etc locks the permissions down a bit further.

    My permissions on the /var/syslog dir are d--x------


    Any help would be greatly appreciated.

  2. #2
    Join Date
    Oct 2011
    Beans
    2

    Re: RSyslog Default File Permissions

    Did you figure this out?

Tags for this Thread

Bookmarks

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •