[ale] Any reason not to open read permissions to /var/log/messages?

Jim Kinney jim.kinney at gmail.com
Tue Apr 8 22:22:39 EDT 2008


Well, there should be nothing going into /var/log/messages pertaining to
anything a DBA has perms to resolve anyway.

(I resisted the urge to scream "because it ISN'T any of their business"!)

Messages has connectivity data. If connections to the system are a problem,
that is not a DBA issue. It's a sysadmin issue.

Others have discussed the accidental password as username issue and that is
ammo enough to bar all non-root-access users from ever gaining access to
most of /var/log. There is a reason why most database systems have their own
log file process and location.

Lastly, the warm and fuzzy reason, it encourages close collaboration between
the DBA and systems people.

Nah! Just kidding. The Sys Admins all know the DBA's are mostly one trick
bozos who coldn't type up a shell script with a book and a coach and the DBA
think the admons are a bunch of hygiene challenged smug SOB's who just get
in the way of their glory moment.

:-)

2008/4/8 Jeff Lightner <jlightner at water.com>:

>  /var/log/messages is currently only read/write for root with no
> permissions for anyone else.
>
> Other than "none of their business" can anyone tell me any reason not to
> allow DBAs the ability to read the file (i.e. change it to be read for
> group and other)?
>  ----------------------------------
> CONFIDENTIALITY NOTICE: This e-mail may contain privileged or confidential
> information and is for the sole use of the intended recipient(s). If you are
> not the intended recipient, any disclosure, copying, distribution, or use of
> the contents of this information is prohibited and may be unlawful. If you
> have received this electronic transmission in error, please reply
> immediately to the sender that you have received the message in error, and
> delete it. Thank you.
> ----------------------------------
>
> _______________________________________________
> Ale mailing list
> Ale at ale.org
> http://mail.ale.org/mailman/listinfo/ale
>
>


-- 
-- 
James P. Kinney III
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://mail.ale.org/pipermail/ale/attachments/20080408/8decfd81/attachment.html 


More information about the Ale mailing list