Permissions on apt history log file
The permissions on /var/log/
If I manually change permissions on this log file to 640, apt changes it back to 644 the next time it adds to the file.
It looks to me like this happens in the source code here:
https:/
with this line in dpkgm.cc:
chmod(history_
Is there some other way to configure the permissions on this?
Why does this file need to be world-readable?
It is important to ensure that log files have the correct permissions to ensure that sensitive data is archived and protected.
The info in this file shows which packages/versions have been installed/
The permissions on this file being set to 644 causes systems to fail industry standard CIS Security Benchmarks [4.2.3 Ensure permissions on all logfiles are configured]
Question information
- Language:
- English Edit question
- Status:
- Answered
- For:
- Ubuntu apt Edit question
- Assignee:
- No assignee Edit question
- Last query:
- Last reply:
Can you help with this problem?
Provide an answer of your own, or ask Simon Gould for more information if necessary.