[Bro] access right changed on log directory

Emmanuel TORQUATO Emmanuel.TORQUATO at monext.net
Mon Aug 24 08:02:59 PDT 2015

Thanks Daniel,

I have used setgid to set read on the low privilege's group on the spool folder. Any files or folders created under spool by bro are now accessible by this group. 

-----Message d'origine-----
De : Daniel Thayer [mailto:dnthayer at illinois.edu] 
Envoyé : vendredi 21 août 2015 18:25
À : Emmanuel TORQUATO; bro at bro.org
Objet : Re: [Bro] access right changed on log directory

Broctl creates that directory, but it doesn't explicitly set or change its permissions.  You should check the umask of the root user on your system, and the umask setting for sudo (if you're using sudo to run broctl).  You want a umask of 0022.

On 08/21/2015 10:53 AM, Emmanuel TORQUATO wrote:
> Hello,
> I have upgraded from 2.3.2 to 2.4 and find that spool/manager 
> directory has not the same access right than before:
> In 2.4:
> drwxr-x---  3 root root   4096 Aug 21 17:36 manager
> in 2.3.2:
> drwxr-xr-x  2 root root 4096 Aug 21 17:13 manager
> It's a problem for me because I would like to view logs without being 
> root. Is there a way to change the access right to log directory when 
> starting bro?
> Thanks
> Regards,
> Emmanuel.

More information about the Bro mailing list