redmine:production.log is not rotated and grows indefinetly

theforeman / foreman-infra

Puppet modules and scripts to manage Foreman project infrastructure

https://theforeman.github.io/foreman-infra

Apache License 2.0

23 stars 51 forks source link

redmine:production.log is not rotated and grows indefinetly #1989

Open evgeni opened 8 months ago

evgeni commented 8 months ago

type=AVC msg=audit(1700092800.224:574348): avc:  denied  { write } for  pid=2124627 comm="logrotate" name="production.log" dev="dm-0" ino=34805887 scontext=system_u:system_r:logrotate_t:s0 tcontext=system_u:object_r:usr_t:s0 tclass=file permissive=0

audit2allow creates:

allow logrotate_t usr_t:file write;

but I guess that file just shouldn't be usr_t but var_log_t or similar.

evgeni commented 1 month ago

Re-opening, as now /var/log/messages was the offender, thanks rsyslog

evgeni commented 3 weeks ago

probably rsyslog can just be dropped given we have journald.