Re: Log read permissions

Richard Gooch (rgooch@atnf.CSIRO.AU)
Thu, 30 Jan 1997 10:37:32 +1100

Messages sorted by: [ date ][ thread ][ subject ][ author ]
Next message: Matt Sapp: "Re: Recovered errors on ide1"
Previous message: Ion Badulescu: "Re: /proc/swaps in 2.1.24"

Chris Evans writes:
>
> I note that "normal" users have permission to read the kernel log buffer.
> I don't really see why the non-superuser should need access to these in
> any way.
>
> Not that anything particularly sensitive goes into these logs mind you..
> however I'm sure user joe doesn't care if my floppy driver module has been
> loaded/unloaded or that lp1 is out of paper/on fire etc :-)

I don't think this is a good idea. As an administrator, I don't want
to have to always log in as root just to see if something has gone
wrong. Another example of where a mere mortal may want to read the
kernel log is if they are at the console and want to check why the
floppy drive isn't working: the kernel message will tell them if the
driver is available (either built-in or a loadable module). Then they
can call the sysadmin and say either "the floppy driver isn't loaded"
or "the floppy has stopped working". Nice of them to save the sysadmin
time.

Regards,

Richard....

Next message: Matt Sapp: "Re: Recovered errors on ide1"
Previous message: Ion Badulescu: "Re: /proc/swaps in 2.1.24"