Re: [chrony-users] Chrony permissions question.

[ Thread Index | Date Index | More chrony.tuxfamily.org/chrony-users Archives ] 

On Fri, Dec 20, 2019 at 04:30:52PM +0000, Kohr, Alexander wrote:
> I know in RHEL 7 the default location of the drift file sis the home directory of /var/lib/chrony. (I also know it is the recommended location for some other files if they are enabled in the chrony configuration.)
> Is there a reasons that the chrony home directory is /var/lib/chrony instead of something else, that does not contain the drift file?

The package contains just two directories, /var/lib/chrony and
/var/log/chrony. The former seems like a better "home" directory to
me. When I look in /etc/passwd, there are quite a few other daemons
that have a home directory in /var/lib. If it was changed to /, it
would still be readable by everyone.

> If so is there a reason that the chrony home directory permission are 755 instead of 750 or 700?

The reason is that it contains files that could be useful to all users
of the system, e.g. to read the drift of the system clock, or see that
the daemon is still working.

-- 
Miroslav Lichvar


--
To unsubscribe email chrony-users-request@xxxxxxxxxxxxxxxxxxxx
with "unsubscribe" in the subject.
For help email chrony-users-request@xxxxxxxxxxxxxxxxxxxx
with "help" in the subject.
Trouble?  Email listmaster@xxxxxxxxxxxxxxxxxxxx.

Mail converted by MHonArc 2.6.19+ http://listengine.tuxfamily.org/