Hi,
I'm new to this list and hope I don't raise a question that has been raised many times before. I searched the archive and couldn't find that discussed previously...
I want to configure stunnel using
setuid = nobody setgid = nobody
while having it write its output to its own logfile, not using syslog, with
output = /var/log/stunnel.log log = append syslog = no
This works when user nobody has write-access to an existing logfile, or user nobody is allowed to create the file in the directory. Both is not a good idea: user nobody should not have write access there.
I could limit potential damage by having a separate directory with such access to nobody, but that is still kind of wrong.
Or I could create a separate user only for stunnel and give that user full access to a separate directory: that would be more secure, only a hijacked (hopefully not) stunnel could tamper with its own logfiles.
Shouldn't stunnel create and/or open the logfile while it is still running as root, and only then switch to user nobody? Or is there an option that I did not see so far allowing for what I'm trying?
Thanks for any help.
Regards, Norbert