Received: from mail-vs1-f51.google.com (mail-vs1-f51.google.com [209.85.217.51])
	by nld3-dev1.alpinelinux.org (Postfix) with ESMTPS id 0B4F1781128
	for <~alpine/devel@lists.alpinelinux.org>; Sun, 19 Jun 2022 18:50:30 +0000 (UTC)
Received: by mail-vs1-f51.google.com with SMTP id g6so8724796vsb.2
        for <~alpine/devel@lists.alpinelinux.org>; Sun, 19 Jun 2022 11:50:30 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
        d=gmail.com; s=20210112;
        h=mime-version:references:in-reply-to:from:date:message-id:subject:to
         :cc:content-transfer-encoding;
        bh=FzZNjuBLLKVusn8c6GUMNGQ3gL7NV8oeCg0uPBuwibg=;
        b=SdV9eZNXNayIzY2M6Sl8wIuK3EHU6sfTlY3853P3hLR8r7oRzHEDtMZtAljIWtg9jn
         wFKEnmH+UIkxSqK/MBf5Si++htl2ykyhBfK73F/RUCOFj+EQOZQyTLVt+8uTgXkqO3QI
         2xIjS/az8yrhzCO2lixMmq2kjxIGTg7lYLfrBqPhts74aQG6uPBZjt+rk5TzXTvPIYlt
         ebvUv94BPVbeKOrFPntr/EWapZnVJINJYvFd72dniA9xSULfv0zoog5lzE5X86nPbA06
         kIQQeWQVnk6Zgi3K75E/28+QVnF9WVWxpI9ro9MV0tNB2BCHpPk+l7Rhk8eCxtSJwJzu
         7FGw==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
        d=1e100.net; s=20210112;
        h=x-gm-message-state:mime-version:references:in-reply-to:from:date
         :message-id:subject:to:cc:content-transfer-encoding;
        bh=FzZNjuBLLKVusn8c6GUMNGQ3gL7NV8oeCg0uPBuwibg=;
        b=l5EzDExgHcmOfxGCabqHGFPGcsvTPSeNhyrOtmHOv9T1BGiyzfnCQfqkYS4yA1m6Ui
         qsrveCIKa9z+MR6FBu7fD+9eaMEVu5yVkj00T7TYo2IILdOceF7OZhayBHKpEbXlCThp
         zYFI7O/x3Blrj7wLchgyeS+Gu8JENlydWtmPRiIweboPWqAo0JN+/rp0M6/2p3BAdQWq
         k8+6/yhJibLT1hByaG36FBfaQS+BUUxY+qtvr7oAzkoIvE+xElYua7MLhLTJdb4b+Eiu
         ppRpoEALpYAcWx7wkD2ELe9seHXFCNP7ivhlcdgHSbKPai9w0x86X78yoUI5VW8hyC1Y
         cIRA==
X-Gm-Message-State: AJIora/FzMhgqGCy1Z3tY2TcJOvzddXbNG+p0M6SG4Bm0sow+tlo9D9s
	8rUEgj5JsKwDE7NmlKXeZxrJcwQMWoPMPGvZkZ7TBOLMc08=
X-Google-Smtp-Source: AGRyM1sk5Nm2Op8MSqMKvO4/fVo34H1QNTjeDnb+9kFd8d6seLYNyHUld0Ch3x6HYHQVlzvs7uz/9ndv7NnN1fY+O3E=
X-Received: by 2002:a67:ac03:0:b0:354:28c7:20d1 with SMTP id
 v3-20020a67ac03000000b0035428c720d1mr1871546vse.66.1655664629279; Sun, 19 Jun
 2022 11:50:29 -0700 (PDT)
MIME-Version: 1.0
References: <22948c2fba2f4882ac4646501fd6ef3f@tower-net.de> <cf311040-21f2-ad8b-4b9c-363f7ad0c9f5@jirutka.cz>
In-Reply-To: <cf311040-21f2-ad8b-4b9c-363f7ad0c9f5@jirutka.cz>
From: Konstantin Kulikov <k.kulikov2@gmail.com>
Date: Sun, 19 Jun 2022 21:50:17 +0300
Message-ID: <CAD+eXGRn8OsRHiKf9De6KVknh8DG6d4dX=hU4kQF0QSSOmZDQQ@mail.gmail.com>
Subject: Re: Security problem in how you manage users in package installations
To: Jakub Jirutka <jakub@jirutka.cz>
Cc: Markus Kolb <alpinelinux+develml@tower-net.de>, 
	Alpine Linux devel ML <~alpine/devel@lists.alpinelinux.org>
Content-Type: text/plain; charset="UTF-8"
Content-Transfer-Encoding: quoted-printable

>Note that this will most like break container installations, which do no
>run services. So you cannot rely on checkpath in an init script to
>created required directories.

Do people actually use alpine in this way?
That would be really surprising to me.
And I have heard no complaints about grafana for example.

>I don=E2=80=99t know how do you define proper logging implementation, but =
maybe you don=E2=80=99t know about `output_log` and `error_log` parameters.=
 You can use it to =E2=80=9Credirect=E2=80=9D stdout/stderr to syslog using=
 logger(1) command. See kresd.initd [1] for example.

If only error_logger worked with supervise-daemon.
Even then it does work enough for my small installation, but it is far
from ideal - for example everybody has write access to /dev/log or if
logger is killed service will stall or silently drop logs.
Configuration UI is also bad - you should be able to just set where
logs go right in conf.d.
And no error_log is not the answer, as it requires logfiles to be
owned by service and cannot rotate logs at all.