From: mj <mj>
Date: Mon, 5 Nov 2001 20:15:24 +0000 (+0000)
Subject: Added security advice to INSTALL.mir concerning readability of log files
X-Git-Tag: prexmlproducerconfig~310
X-Git-Url: http://erislabs.net/gitweb/?p=mir.git;a=commitdiff_plain;h=03409c6775d8c0c1d7c000bb91f0bd474bc8dbf0

Added security advice to INSTALL.mir concerning readability of log files
containing password information.
---

diff --git a/doc/INSTALL.mir b/doc/INSTALL.mir
index 9dceaf4f..e2174ca8 100755
--- a/doc/INSTALL.mir
+++ b/doc/INSTALL.mir
@@ -78,7 +78,11 @@ as user postgres:
 
 11. Set permissions
 	We provide a script that sets all files' and direcories' permissions to
-	a quite reasonable state.
+	a quite reasonable state. The most important thing you have to do after
+    the invokation of this script is to ensure that the log files --
+    especially dbentity.log -- are not readable by users that could
+    compromise system security, because all passwords and the like will
+    be logged here.
 	
 	cp perms.sh-dist perms.sh
 	# Now, change the install directory and group in perms.sh
@@ -86,6 +90,8 @@ as user postgres:
 	./perms.sh
 
 
+
+
 12. restart tomcat 
 
 13. configure mod_jk