Hi Everyone,
It would appear that the permissions for /var/named are being changed across several of our cPanel machines to the following:
and this is causing logrotate to fail with this message:
You can reproduce the error by testing logrotate with while those permissions are set:
logrotate -d /etc/logrotate.d/named
Once I changed permissions back to what many of our other cPanel boxes have, it completes successfully again:
chmod 0755 /var/named
Also the user and group on my testing machine are named:named, where as the ownership on these affected machines with the error are root:named.
I mostly want to know if anyone else has been running into this.
It would appear that the permissions for /var/named are being changed across several of our cPanel machines to the following:
Code:
drwxrwx--T 6 root named 4.0K Jan 5 07:40 named/
Code:
error: skipping "/var/named/named.log" because parent directory has insecure permissions (It's world writable or writable by group which is not "root") Set "su" directive in config file to tell logrotate which user/group should be used for rotation.
logrotate -d /etc/logrotate.d/named
Once I changed permissions back to what many of our other cPanel boxes have, it completes successfully again:
chmod 0755 /var/named
Also the user and group on my testing machine are named:named, where as the ownership on these affected machines with the error are root:named.
I mostly want to know if anyone else has been running into this.