Information
Log files contain information from many services on the the local system, or in the event of a centralized log server, others systems logs as well. In general log files are found in /var/log/ although application can be configured to store logs elsewhere. Should your application store logs in another, ensure to run the same test on that location.
It is important that log files have the correct permissions to ensure that sensitive data is protected and that only the appropriate users / groups have access to them.
Solution
Run the following command to set permissions on all existing log files in /var/log Although the command is not destructive, ensure that the output of the audit procedure is captured in the event that the remediation causes issues.
# find /var/log/ -type f -perm /g+wx,o+rwx -exec chmod --changes g-wx,o-rwx "{}" +
If there are services that logs to other locations, ensure that those log files have the appropriate permissions.