On Wed, 17.07.13 18:58, M A Young (m.a.young@xxxxxxxxxxxx) wrote: > On Wed, 17 Jul 2013, Eric Smith wrote: > > >On Wed, Jul 17, 2013 at 8:39 AM, "Jóhann B. Guðmundsson" > ><johannbg@xxxxxxxxx> wrote: > >>Allowing editing of log files is a pure security risk... > > > >So is giving a sysadmin the root password, but we do it. > > > >I generally make a copy of a log file and edit the copy, but I'd > >oppose anything that took away the ability for log files to be edited. > > Another reason why you might to edit the journal is when you have to > keep logs for a precise time for regulatory reasons. This isn't a > problem under the classic logging and rotation. To implement retention policy please use the retention features, i.e. "MaxRetentionSec=" in journald.conf. "MaxRetentionSec=2months" will set the retention time to 2months, and we will synchronously delete all older messages as soon as that time is hit. (And in case you wonder, the "Sec" suffix just indicates the default time unit if you don't specify any. In the above line we specified "month", hence the time unit is months) Lennart -- Lennart Poettering - Red Hat, Inc. -- devel mailing list devel@xxxxxxxxxxxxxxxxxxxxxxx https://admin.fedoraproject.org/mailman/listinfo/devel
