Closed tas50 closed 9 years ago
This cookbook actually mangles the privs for rsyslog and presents a pretty big security hole. rsyslog on precise should be running as the syslog, but it's running as root due to bad if statement int he attributes file. All the config file perms have changed from rsyslog/admin over to root/root and the line to drop privs is removed from the config.
This has been fixed
The cookbook incorrectly changes the owner on /var/spool/rsyslog when running on precise.
The existing privs are the correct ones laid down by the package.