Note: This is a public test instance of Red Hat Bugzilla. The data contained within is a snapshot of the live data so any changes you make will not be reflected in the production Bugzilla. Email is disabled so feel free to test any aspect of the site that you want. File any problems you find or give feedback at bugzilla.redhat.com.
Bug 1083975 - logrotate complains about insecure /var/log/rhn permissions
Summary: logrotate complains about insecure /var/log/rhn permissions
Keywords:
Status: CLOSED CURRENTRELEASE
Alias: None
Product: Spacewalk
Classification: Community
Component: API
Version: 2.1
Hardware: Unspecified
OS: Unspecified
unspecified
unspecified
Target Milestone: ---
Assignee: Jan Dobes
QA Contact: Red Hat Satellite QA List
URL:
Whiteboard:
Depends On: 1056515
Blocks: space21 space22
TreeView+ depends on / blocked
 
Reported: 2014-04-03 10:38 UTC by Jan Hutař
Modified: 2014-07-17 08:41 UTC (History)
2 users (show)

Fixed In Version: spacewalk-java-2.2.35-1
Doc Type: Bug Fix
Doc Text:
Clone Of: 1056515
Environment:
Last Closed: 2014-07-17 08:41:16 UTC
Embargoed:

Attachments (Terms of Use)

Description Jan Hutař 2014-04-03 10:38:14 UTC 
Now I'm getting only one line:

error: skipping "/var/log/rhn/rhn_web_api.log" because parent directory has insecure permissions (It's world writable or writable by group which is not "root") Set "su" directive in config file to tell logrotate which user/group should be used for rotation.

logrotate-3.8.4-3.fc19.x86_64
spacewalk-backend-2.2.15-1.fc19.noarch




+++ This bug was initially created as a clone of Bug #1056515 +++

Description of problem:
Running logrotate on system with Spacewalk installed produces errors.


Version-Release number of selected component (if applicable):
logrotate-3.8.4-3.fc19.x86_64
spacewalk-backend-2.1.42-1.fc19.noarch


How reproducible:
always


Steps to Reproduce:
1. # cat /tmp/tmp.x9sya0HdOa
rotate 40
size=1k
create
missingok
include /etc/logrotate.d
2. # logrotate -f /tmp/tmp.x9sya0HdOa


Actual results:
# logrotate -f /tmp/tmp.x9sya0HdOa
error: skipping "/var/log/rhn/rhn_server_app.log" because parent directory has insecure permissions (It's world writable or writable by group which is not "root") Set "su" directive in config file to tell logrotate which user/group should be used for rotation.
error: skipping "/var/log/rhn/rhn_server_applet.log" because parent directory has insecure permissions (It's world writable or writable by group which is not "root") Set "su" directive in config file to tell logrotate which user/group should be used for rotation.
error: skipping "/var/log/rhn/rhn_config_management.log" because parent directory has insecure permissions (It's world writable or writable by group which is not "root") Set "su" directive in config file to tell logrotate which user/group should be used for rotation.
error: skipping "/var/log/rhn/rhn_config_management_tool.log" because parent directory has insecure permissions (It's world writable or writable by group which is not "root") Set "su" directive in config file to tell logrotate which user/group should be used for rotation.
error: skipping "/var/log/rhn/rhn_server_sat.log" because parent directory has insecure permissions (It's world writable or writable by group which is not "root") Set "su" directive in config file to tell logrotate which user/group should be used for rotation.
error: skipping "/var/log/rhn/rhn_sat_export_internal.log" because parent directory has insecure permissions (It's world writable or writable by group which is not "root") Set "su" directive in config file to tell logrotate which user/group should be used for rotation.
error: skipping "/var/log/rhn/rhn_upload_package_push.log" because parent directory has insecure permissions (It's world writable or writable by group which is not "root") Set "su" directive in config file to tell logrotate which user/group should be used for rotation.
error: skipping "/var/log/rhn/rhn_server.log" because parent directory has insecure permissions (It's world writable or writable by group which is not "root") Set "su" directive in config file to tell logrotate which user/group should be used for rotation.
error: skipping "/var/log/rhn/rhn_server_satellite.log" because parent directory has insecure permissions (It's world writable or writable by group which is not "root") Set "su" directive in config file to tell logrotate which user/group should be used for rotation.
error: skipping "/var/log/rhn/rhn_server_xmlrpc.log" because parent directory has insecure permissions (It's world writable or writable by group which is not "root") Set "su" directive in config file to tell logrotate which user/group should be used for rotation.
# echo $?
1


Expected results:
Should not print any errors and should return 0

--- Additional comment from Jan Dobes on 2014-01-28 11:10:14 EST ---

It depends on version of logrotate. I checked multiple versions and it occurs only with logrotate >= 3.8.0, i. e. versions in latest Fedora's. In RHEL[56] are older versions.

--- Additional comment from Jan Dobes on 2014-02-06 11:39:23 EST ---

fixed in master by commit:
  66509c2cb11dfd6f68208f13d904cdafc68a79d6

--- Additional comment from Matej Kollar on 2014-03-04 08:08:11 EST ---

Spacewalk 2.1 has been released.
https://fedorahosted.org/spacewalk/wiki/ReleaseNotes21

--- Additional comment from Matej Kollar on 2014-03-04 08:09:02 EST ---

Spacewalk 2.1 has been released.
https://fedorahosted.org/spacewalk/wiki/ReleaseNotes21
Comment 1 Jan Dobes 2014-04-03 11:42:04 UTC 
fixed in spacewalk master:
  89c07aa94beab1813c38254db82dc835d0b091a0
Comment 2 Milan Zázrivec 2014-07-17 08:41:16 UTC 
Spacewalk 2.2 has been released:

    https://fedorahosted.org/spacewalk/wiki/ReleaseNotes22
Note You need to log in before you can comment on or make changes to this bug.