The current defaults are insecure: having logs accessible by every user on localhost is unexpected behavior on many systems.
So the default should be to expose HTTP over UNIX domain instead of TCP.
The current defaults are insecure: having logs accessible by every user on localhost is unexpected behavior on many systems.
So the default should be to expose HTTP over UNIX domain instead of TCP.
The problem is that non-root users generally can't access those dirs (well, unless you have a start script which creates those and give you ownership; like RuntimeDirectory for systemd)
So, how to make it work for non-root users? Options are:
have the defaults broken if non-root, and require the user to provide valid paths
use /tmp/ instead of /run/ if non-root
always use /tmp/
FHS says that sockets should be in `/run/circolog/`
So:
- `/run/circolog/query`
- `/run/circolog/ctl`
- `/run/circolog/syslog`
The problem is that non-root users generally can't access those dirs (well, unless you have a start script which creates those and give you ownership; like [`RuntimeDirectory`](https://www.freedesktop.org/software/systemd/man/systemd.exec.html#RuntimeDirectory=) for systemd)
So, how to make it work for non-root users? Options are:
- have the defaults broken if non-root, and require the user to provide valid paths
- use `/tmp/` instead of `/run/` if non-root
- always use `/tmp/`
agreed to put the command line default to /tmp, which is a pretty good choice in any case.
Better (as in "more FHS-compliant") paths could be proposed at distribution level (when #22 is ready)
agreed to put the command line default to `/tmp`, which is a pretty good choice in any case.
Better (as in "more FHS-compliant") paths could be proposed at distribution level (when #22 is ready)
The current defaults are insecure: having logs accessible by every user on localhost is unexpected behavior on many systems.
So the default should be to expose HTTP over UNIX domain instead of TCP.
FHS says that sockets should be in
/run/circolog/
So:
/run/circolog/query
/run/circolog/ctl
/run/circolog/syslog
The problem is that non-root users generally can't access those dirs (well, unless you have a start script which creates those and give you ownership; like
RuntimeDirectory
for systemd)So, how to make it work for non-root users? Options are:
/tmp/
instead of/run/
if non-root/tmp/
agreed to put the command line default to
/tmp
, which is a pretty good choice in any case.Better (as in "more FHS-compliant") paths could be proposed at distribution level (when #22 is ready)