Date: Thu, 15 May 2008 13:00:29 GMT From: Yarodin <yarodin@gmail.com> To: freebsd-gnats-submit@FreeBSD.org Subject: conf/123701: false security run output warnings Message-ID: <200805151300.m4FD0TTY067400@www.freebsd.org> Resent-Message-ID: <200805151310.m4FDA1Z0069777@freefall.freebsd.org>
next in thread | raw e-mail | index | archive | help
>Number: 123701 >Category: conf >Synopsis: false security run output warnings >Confidential: no >Severity: serious >Priority: medium >Responsible: freebsd-bugs >State: open >Quarter: >Keywords: >Date-Required: >Class: sw-bug >Submitter-Id: current-users >Arrival-Date: Thu May 15 13:10:01 UTC 2008 >Closed-Date: >Last-Modified: >Originator: Yarodin >Release: 6.3-RELEASE-p2 >Organization: >Environment: >Description: Look at the default newsyslog.conf: /var/log/auth.log 600 7 100 * JC and etc. But on one not heavy loaded host i got a very nervous situation, when auth.log fill with data for two years, because it size is still lower then 100kb. And at this case i recive email with security run output warnings on problems being at past year without any point to year of course. And i think same sistuation is for other system log files with default settings for 'on size' rotating. >How-To-Repeat: Merge two auth.log with data for two years and create reports. >Fix: Change default settigns at newsyslog.conf for log files using at reports from 'on size' rotate to 'on time' rotate (once at month, week ...) ? >Release-Note: >Audit-Trail: >Unformatted:
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?200805151300.m4FD0TTY067400>