On Tue, May 12, 2015 at 7:10 AM, Piotr Ożarowski <pi...@debian.org> wrote: > [Hideki Yamane, 2015-05-10] >> On Sun, 10 May 2015 00:56:43 -0300 >> Henrique de Moraes Holschuh <h...@debian.org> wrote: >>> >>> And I wish it would keep /var/log/dmesg (and its rotation). That thing is >>> really useful for user support when dealing with kernel and boot issues. >> >> Is it enough to ask users to exec "sudo journalctl"? > > IMO a better idea is to add them to systemd-journal group
Shouldn't "systemd-*" groups be reserved for systemd system accounts? th@localhost:~$ grep systemd /etc/passwd systemd-timesync:x:100:104:systemd Time Synchronization,,,:/run/systemd:/bin/false systemd-network:x:101:105:systemd Network Management,,,:/run/systemd/netif:/bin/false systemd-resolve:x:102:106:systemd Resolver,,,:/run/systemd/resolve:/bin/false systemd-bus-proxy:x:103:107:systemd Bus Proxy,,,:/run/systemd:/bin/false th@localhost:~$ grep systemd /etc/group systemd-journal:x:102: systemd-journal-remote:x:103: systemd-timesync:x:104: systemd-network:x:105: systemd-resolve:x:106: systemd-bus-proxy:x:107: I can run "journalctl" as non-root because I'm a member of "adm". th@localhost:~$ id uid=1000(th) gid=1000(th) groups=1000(th),4(adm),27(sudo),46(plugdev),115(lpadmin) th@localhost:~$ journalctl -- Logs begin at Tue 2015-05-12 08:19:51 EDT, end at Tue 2015-05-12 08:34:59 EDT. -- May 12 08:19:51 localhost.localdomain systemd-journal[232]: Runtime journal is using 8.0M (max allowed 78.9M, trying to leave 118.4M free of 781.2M available → current limit 78.9M). May 12 08:19:51 localhost.localdomain systemd-journal[232]: Runtime journal is using 8.0M (max allowed 78.9M, trying to leave 118.4M free of 781.2M available → current limit 78.9M). May 12 08:19:51 localhost.localdomain kernel: Initializing cgroup subsys cpuset May 12 08:19:51 localhost.localdomain kernel: Initializing cgroup subsys cpu May 12 08:19:51 localhost.localdomain kernel: Initializing cgroup subsys cpuacct <snip> It's set up by "systemd-tmpfiles-setup.service". th@localhost:~$ grep '/run/log/journal' /usr/lib/tmpfiles.d/* /usr/lib/tmpfiles.d/systemd.conf:z /run/log/journal 2755 root systemd-journal - - /usr/lib/tmpfiles.d/systemd.conf:Z /run/log/journal/%m ~2750 root systemd-journal - - /usr/lib/tmpfiles.d/systemd.conf:a+ /run/log/journal/%m - - - - d:group:adm:r-x /usr/lib/tmpfiles.d/systemd.conf:A+ /run/log/journal/%m - - - - group:adm:r-x th@localhost:~$ grep '/var/log/journal' /usr/lib/tmpfiles.d/* /usr/lib/tmpfiles.d/systemd.conf:z /var/log/journal 2755 root systemd-journal - - /usr/lib/tmpfiles.d/systemd.conf:z /var/log/journal/%m 2755 root systemd-journal - - /usr/lib/tmpfiles.d/systemd.conf:a+ /var/log/journal/%m - - - - d:group:adm:r-x /usr/lib/tmpfiles.d/systemd.conf:A+ /var/log/journal/%m - - - - group:adm:r-x -- To UNSUBSCRIBE, email to debian-devel-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org Archive: https://lists.debian.org/CAOdo=sye7ppyqc_gcu2afaft_-anvkp6vuq-vxh2tgaaoaz...@mail.gmail.com
