A number of years ago Apple changed access to the system.log file (and others) so that only admin level users could read them. In the name of 'security' I'm assuming. We don't allow non-standard users on our devices however, and one of our developers needs to be able to read the affected logs and can't.
I've tried editing the sudoers file and adding the user to access /System/Applications/Utilities/Console.app, and using a policy to try and open Console. But Console just complains and doesn't work. I could change the permissions on the effected log files, but that'll be reversed as soon as the OS rotates the logs...
Is there a simpler method, or something I'm not thinking of?
Allowing the user temporary admin access isn't a solution either unfortunately.