radius.log permissions issue

Alan DeKok aland at deployingradius.com
Fri Jul 17 16:08:49 CEST 2009


Philip Molter wrote:
> Attached is a patch that fixes the issue.  Given the way that freeradius
> checks for the ability to write to the logfile, it should perform like
> the latter (in my testing, it does exactly that).
> 
> The patch does a couple of things:
> 
> 1) properly handles setuid changes in early configuration times

  OK.

> 2) enables fr_suid_down/up/down_permanently noop calls so that compile
> works when HAVE_SETUID is not defined

  That's needed, yes.

  I've committed a fix based on this that:

a) does suid down earlier
b) lets it build when HAVE_SETUID is not defined
c) calls chown() on the log file to ensure it has the correct owner

  Alan DeKok.



More information about the Freeradius-Users mailing list