boyska/circolog
1
2
Fork 1
Code Issues 6 Pull requests 1 Releases Wiki Activity

Default listening paths #5

New issue
Closed
opened 2018-12-26 02:25:23 +01:00 by boyska · 2 comments
boyska commented 2018-12-26 02:25:23 +01:00
Owner
Copy link

The current defaults are insecure: having logs accessible by every user on localhost is unexpected behavior on many systems.

So the default should be to expose HTTP over UNIX domain instead of TCP.

The current defaults are insecure: having logs accessible by every user on localhost is unexpected behavior on many systems. So the default should be to expose HTTP over UNIX domain instead of TCP.
boyska commented 2019-01-07 14:53:43 +01:00
Author
Owner
Copy link

FHS says that sockets should be in /run/circolog/

So:

  • /run/circolog/query
  • /run/circolog/ctl
  • /run/circolog/syslog

The problem is that non-root users generally can't access those dirs (well, unless you have a start script which creates those and give you ownership; like RuntimeDirectory for systemd)

So, how to make it work for non-root users? Options are:

  • have the defaults broken if non-root, and require the user to provide valid paths
  • use /tmp/ instead of /run/ if non-root
  • always use /tmp/
FHS says that sockets should be in `/run/circolog/` So: - `/run/circolog/query` - `/run/circolog/ctl` - `/run/circolog/syslog` The problem is that non-root users generally can't access those dirs (well, unless you have a start script which creates those and give you ownership; like [`RuntimeDirectory`](https://www.freedesktop.org/software/systemd/man/systemd.exec.html#RuntimeDirectory=) for systemd) So, how to make it work for non-root users? Options are: - have the defaults broken if non-root, and require the user to provide valid paths - use `/tmp/` instead of `/run/` if non-root - always use `/tmp/`
boyska commented 2019-05-02 21:29:47 +02:00
Author
Owner
Copy link

agreed to put the command line default to /tmp, which is a pretty good choice in any case.

Better (as in "more FHS-compliant") paths could be proposed at distribution level (when #22 is ready)

agreed to put the command line default to `/tmp`, which is a pretty good choice in any case. Better (as in "more FHS-compliant") paths could be proposed at distribution level (when #22 is ready)
Sign in to join this conversation.
No Branch/Tag specified
Branches Tags
master
releaseutils
5-socketpaths
colors
sqlquery
sig-coolness
No results found.
Labels
Clear labels   
bug

   
circologctl

   
doc

   
duplicate

   
enhancement

   
help wanted

   
invalid

   
question

   
security

   
syslog

   
wontfix
No labels
bug
circologctl
doc
duplicate
enhancement
help wanted
invalid
question
security
syslog
wontfix
Milestone
Clear milestone
No items
No milestone
1.0
Projects
Clear projects
No items
No project
Assignees
Clear assignees
No assignees
boyska
1 participant
Notifications
Due date
The due date is invalid or out of range. Please use the format "yyyy-mm-dd".

No due date set.

Dependencies

No dependencies set.

Reference: boyska/circolog#5
No description provided.
Delete branch "%!s()"

Deleting a branch is permanent. Although the deleted branch may continue to exist for a short time before it actually gets removed, it CANNOT be undone in most cases. Continue?