mgd's picture

Thanks, Jeremy. I created the following script and placed it in the /etc/cron.hourly folder with the appropriate permissions. At least that will give my some protection will I continue to investigate. I will also modify the script to check permissions and then apply them only if they are incorrect.

#!/bin/sh
find /var/log/cacti -exec chown -R cacti:www-data {} \;
find /var/log/cacti -exec chmod -R 0775 {} \;