Exim log permissions

LawsHosting · Dec 21, 2008

2008-12-21 09:53:56 1LEL0W-0001Zi-1e Cannot open main log file "/var/log/exim/mainlog": Permission denied: euid=8 egid=8
An error was detected while processing a file of BSMTP input.
The error message was:

421 Unexpected failure, please try later - message abandoned

Had a lot of these from Mail-Deamon (which of course are spam)......

But most importantly, I was concerned with the logfile error....... To my curiosity, I found it was owned by root:adm....

What is the adm group? As most of my log files in /var/log/ are grouped owned by adm

I changed all exim logs to mail:mail now.......

scsi · Dec 22, 2008

Your permissions are messed up there should be no adm group.

Try:

cd /usr/local/directadmin/scripts
./set_permissions.sh mail

LawsHosting · Dec 22, 2008

Other groups which have no associated user:
* adm: Group adm is used for system monitoring tasks. Members of this group can read many log files in /var/log, and can use xconsole. Historically, /var/log was /usr/adm (and later /var/adm), thus the name of the group

This group is on all my servers (Debian Etch), so I guess its safe - of course, not for every file (i.e exim logs).....

nobaloney · Dec 22, 2008

Perhaps it's intentional so your adm user can log in and read logs ... so you don't have to assign root privileges for people to monitor lags... exactly as you wrote above in your quote.

Jeff

Exim log permissions

LawsHosting

Verified User

scsi

Verified User

LawsHosting

Verified User

nobaloney

NoBaloney Internet Svcs - In Memoriam †