yahoo-eng-team team mailing list archive

Thread
Date

[Bug 1900837] [NEW] cloud-init resets permissions on log file after reboot

To: yahoo-eng-team@xxxxxxxxxxxxxxxxxxx
From: Richard Harding <1900837@xxxxxxxxxxxxxxxxxx>
Date: Wed, 21 Oct 2020 12:21:43 -0000
Reply-to: Bug 1900837 <1900837@xxxxxxxxxxxxxxxxxx>
Sender: bounces@xxxxxxxxxxxxx

Public bug reported:

In attempting to apply CIS security guidelines onto an Ubuntu system it
was found that changing the log files in /var/log to 640, that on a
reboot cloud-init would reset the permissions to 644. As long as cloud-
init can write to the file it should be ok to alter the permissions
without issue.

** Affects: cloud-init
     Importance: High
         Status: Triaged

-- 
You received this bug notification because you are a member of Yahoo!
Engineering Team, which is subscribed to cloud-init.
https://bugs.launchpad.net/bugs/1900837

Title:
  cloud-init resets permissions on log file after reboot

Status in cloud-init:
  Triaged

Bug description:
  In attempting to apply CIS security guidelines onto an Ubuntu system
  it was found that changing the log files in /var/log to 640, that on a
  reboot cloud-init would reset the permissions to 644. As long as
  cloud-init can write to the file it should be ok to alter the
  permissions without issue.

To manage notifications about this bug go to:
https://bugs.launchpad.net/cloud-init/+bug/1900837/+subscriptions

Follow ups

[Bug 1900837] Re: cloud-init resets permissions on log file after reboot
From: Chad Smith, 2020-11-24