Security issue /var/log/ispconfig/cron.log
I'am reading the install script, here an extract :
//* Create the ispconfig log file and directory
if(!is_file($conf['ispconfig_log_dir'].'/ispconfig.log')) {
if(!is_dir(conf['ispconfig_log_dir'])) mkdir(
conf['ispconfig_log_dir'], 0755);
touch($conf['ispconfig_log_dir'].'/ispconfig.log');
}
[...]
touch($conf['ispconfig_log_dir'].'/cron.log'); chmod($conf['ispconfig_log_dir'].'/cron.log', 0666);
I suppose anyone can write to /var/log/ispconfig/cron.log and fill the disk ?