| View previous topic :: View next topic |
| Author |
Message |
thompsonmike
Apprentice
Joined: 19 Jan 2004
Posts: 275
Location: Bath UK
|
 Posted: Sun Aug 22, 2004 5:56 pm Post subject: Tenshi |
 |
|
I have just installed Tenshi, but have one small question.
when started from the init script, it attempts to start the program under the user tenshi, which has no access to the Messages file.
I removed the user clause from the init file, so it is now running as root. Is this safe?
If not what is the best way to run it so it can read the messages file?
_________________
Thanks
Michael.. |
|
| Back to top |
|
 |
tigger^
Retired Dev
Joined: 01 Jun 2003
Posts: 9
Location: UK
|
| Posted: Sun Aug 22, 2004 8:28 pm Post subject: Re: Tenshi |
|
|
| thompsonmike wrote: | I have just installed Tenshi, but have one small question.
when started from the init script, it attempts to start the program under the user tenshi, which has no access to the Messages file.
I removed the user clause from the init file, so it is now running as root. Is this safe?
If not what is the best way to run it so it can read the messages file? |
Firstly, the forums aren't the best method for asking tenshi related questions as neither me nor Andrea frequent them (I was pointed to this post by another dev). I would suggest irc or email are better options. Now onto the question.
I have nothing more magical to suggest than either allowing tenshi to read the log file by adding the tenshi user to a group and chgrp'ing your log files, or just continue to run tenshi as root.
While we don't beleive tenshi can be subverted in anyway its best not to run things as root in general, so if you can avoid it, you should.
Most people change their log permissions to allow tenshi to read them.
Cheers,
Rob |
|
| Back to top |
|
|
thompsonmike
Apprentice
Joined: 19 Jan 2004
Posts: 275
Location: Bath UK
|
| Posted: Sun Aug 22, 2004 11:30 pm Post subject: |
|
|
Excellent, thanks for your help. 
_________________
Thanks
Michael.. |
|
| Back to top |
|
|
line72
Apprentice
Joined: 13 Jun 2002
Posts: 212
|
| Posted: Thu Sep 09, 2004 1:05 pm Post subject: |
|
|
I changed the permissions of /var/log/messages which let tenshi start, but everynight /var/log/messages is changed back to only root premissions. I'm using syslog-ng.
Thanks,
/Mark |
|
| Back to top |
|
|
hanj
Veteran
Joined: 19 Aug 2003
Posts: 1500
|
| Posted: Thu Sep 09, 2004 4:33 pm Post subject: |
|
|
Hello
Give this a shot...edit /etc/syslog-ng.conf
| Code: | | destination messages { file("/var/log/messages" owner("root") group("tenshi") perm(0640)); }; |
Hope this helps
hanji |
|
| Back to top |
|
|
line72
Apprentice
Joined: 13 Jun 2002
Posts: 212
|
| Posted: Thu Sep 09, 2004 5:03 pm Post subject: |
|
|
thanks, that fixed it!
/Mark |
|
| Back to top |
|
|
|
Networking & Security
