On 2017-01-10 17:28:27 +0100, Vincent Lefevre wrote:
> Could this be:
>
> install -o root -g adm -m 0640 /dev/null /var/log/monit.log
According to strace, I confirm that this is executed and unlinks
the log file:
17197 execve("/usr/bin/install", ["install", "-o", "root", "-g", "adm", "-m",
"0640", "/dev/null", "/var/log/monit.log"], [/* 140 vars */]) = 0
[...]
17197 lstat("/var/log/monit.log", {st_mode=S_IFREG|0640, st_size=255, ...}) = 0
17197 unlink("/var/log/monit.log") = 0
17197 open("/dev/null", O_RDONLY) = 3
17197 fstat(3, {st_mode=S_IFCHR|0666, st_rdev=makedev(1, 3), ...}) = 0
17197 open("/var/log/monit.log", O_WRONLY|O_CREAT|O_EXCL, 0600) = 4
17197 fstat(4, {st_mode=S_IFREG|0600, st_size=0, ...}) = 0
17197 fadvise64(3, 0, 0, POSIX_FADV_SEQUENTIAL) = 0
17197 mmap(NULL, 139264, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1,
0) = 0x7fdd739d5000
17197 read(3, "", 131072) = 0
17197 fsetxattr(4, "system.posix_acl_access",
"\2\0\0\0\1\0\6\0\377\377\377\377\4\0\0\0\377\377\377\377
\0\0\0\377\377\377\377", 28, 0) = 0
17197 close(4) = 0
17197 close(3) = 0
17197 munmap(0x7fdd739d5000, 139264) = 0
17197 lchown("/var/log/monit.log", 0, 4) = 0
17197 chmod("/var/log/monit.log", 0640) = 0
17197 lseek(0, 0, SEEK_CUR) = -1 ESPIPE (Illegal seek)
17197 close(0) = 0
17197 close(1) = 0
17197 close(2) = 0
17197 exit_group(0) = ?
17197 +++ exited with 0 +++
--
Vincent Lefèvre <vinc...@vinc17.net> - Web: <https://www.vinc17.net/>
100% accessible validated (X)HTML - Blog: <https://www.vinc17.net/blog/>
Work: CR INRIA - computer arithmetic / AriC project (LIP, ENS-Lyon)
