d7ee90746c
wheel to trash logfiles is not exactly good security policy. There have been several gid wheel holes in ports. Various other files were changed as well (eg: the locate database were set to more restrictive modes (444) by their generation scripts) so this should be safe for them. utmp and wtmp are mode 644 already on all the systems we checked. Submitted by: jkb Reviewed by: kris
17 lines
651 B
Plaintext
17 lines
651 B
Plaintext
# configuration file for newsyslog
|
|
# $FreeBSD$
|
|
#
|
|
# logfilename [owner:group] mode count size when [ZB] [/pid_file] [sig_num]
|
|
/var/log/cron 600 3 100 * Z
|
|
/var/log/amd.log 644 7 100 * Z
|
|
/var/log/kerberos.log 644 7 100 * Z
|
|
/var/log/lpd-errs 644 7 100 * Z
|
|
/var/log/maillog 644 7 * @T00 Z
|
|
/var/log/sendmail.st 644 10 * 168 B
|
|
/var/log/messages 644 5 100 * Z
|
|
/var/log/all.log 600 7 * @T00 Z
|
|
/var/log/slip.log 600 3 100 * Z
|
|
/var/log/ppp.log 600 3 100 * Z
|
|
/var/log/security 600 10 100 * Z
|
|
/var/log/wtmp 644 3 * @01T05 B
|