pygos/usyslog
1
0
Fork 0
mirror of https://github.com/pygos/usyslog.git synced 2025-01-15 15:54:57 +01:00
Code Issues Releases Wiki Activity

Store log files in /var/log/syslog, also create parent directories

Browse source 
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
This commit is contained in:
David Oberhollenzer 2018-10-29 15:15:31 +01:00
parent 5fcb1a06cb
commit a09f0bd8e0
3 changed files with 21 additions and 14 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

11
README.md
View file

@ -10,7 +10,7 @@ forwards the parsed message to a modular backend interface.
Currently, there is only one implementation of the backend interface that dumps Currently, there is only one implementation of the backend interface that dumps
the log messages into files in the processes working directory (by default the log messages into files in the processes working directory (by default
`/var/log`). `/var/log/syslog`).
A simple log rotation scheme has been implemented. A simple log rotation scheme has been implemented.
@ -40,18 +40,11 @@ library and should *in theory* work on any modern GNU/Linux or BSD system.
The facility IDs may need to be adjusted (it uses the ones from `usyslogd`). The facility IDs may need to be adjusted (it uses the ones from `usyslogd`).
The file backend of `usyslogd` tries to take over ownership of `/var/log`
and make it inaccessible for all other users. This may be an issue if some
program tries to put its own log files there as non-root user, or programs
that try to read from them as non-root (e.g. `utmp`, `btmp`, `wtmp`, `faillog`,
`lastlog`).
# The syslog implementation # The syslog implementation
## Security Considerations ## Security Considerations
By default, the daemon switches its working directory to `/var/log`. The By default, the daemon switches its working directory to `/var/log/syslog`. The
directory is created if it doesn't exist and the daemon always tries to directory is created if it doesn't exist and the daemon always tries to
change its mode to one that doesn't allow other users (except group members) change its mode to one that doesn't allow other users (except group members)
to access the directory. to access the directory.

22
syslogd.c
View file

@ -175,10 +175,24 @@ fail:
static int chroot_setup(void) static int chroot_setup(void)
{ {
if (mkdir(SYSLOG_PATH, 0750)) { size_t i, len = strlen(SYSLOG_PATH);
if (errno != EEXIST) { char *buffer = alloca(len + 1);
perror("mkdir " SYSLOG_PATH);
return -1; memcpy(buffer, SYSLOG_PATH, len + 1);
for (i = 0; i < len; ++i) {
if (buffer[i] == '\0' || buffer[i] == '/') {
buffer[i] = '\0';
if (mkdir(buffer, 0755)) {
if (errno != EEXIST) {
perror(buffer);
return -1;
}
}
if (i < (len - 1))
buffer[i] = '/';
} }
} }

2
syslogd.h
View file

@ -11,7 +11,7 @@
#define SYSLOG_SOCKET "/dev/log" #define SYSLOG_SOCKET "/dev/log"
#define SYSLOG_PATH "/var/log" #define SYSLOG_PATH "/var/log/syslog"
#define DEFAULT_USER "syslogd" #define DEFAULT_USER "syslogd"
#define DEFAULT_GROUP "syslogd" #define DEFAULT_GROUP "syslogd"