Project

General

Profile

Actions

Bug #2337

open

give warning if permissions won't allow log reopen after dropping privs

Added by Victor Julien over 6 years ago. Updated almost 5 years ago.

Status:
Assigned
Priority:
Normal
Assignee:
Target version:
Affected Versions:
Effort:
Difficulty:
Label:

Description

If we drop privs files that we could open as root might not be readable and writable anymore. We should be able to detect this during startup and warn the user.

This applies to the log files like eve and fast.log, but also to suricata.log for engine messages.


Related issues 2 (1 open1 closed)

Related to Suricata - Bug #2373: unix domain socket owner stays root when priviledges droppedFeedbackOISF DevActions
Related to Suricata - Bug #2386: check if default log dir is writable at start upClosedShivani BhardwajActions
Actions

Also available in: Atom PDF