15404 – Wrong default umask

Bug 15404 - Wrong default umask

Summary: Wrong default umask

Status:	CLOSED NOTABUG
Alias:	None
Product:	Red Hat Linux
Classification:	Retired
Component:	bash
Sub Component:	(Show other bugs)
Version:	7.0
Hardware:	i386
OS:	Linux
Priority:	medium
Severity:	medium
Target Milestone:	---
Assignee:	Bernhard Rosenkraenzer
QA Contact:
Docs Contact:
URL:
Whiteboard:
Keywords:	Security
Depends On:
Blocks:
TreeView+	depends on / blocked

Reported:	2000-08-04 15:47 UTC by Christian Rose
Modified:	2008-05-01 15:37 UTC (History)
CC List:	2 users (show)
Fixed In Version:
Doc Type:	Bug Fix
Doc Text:
Story Points:	---
Clone Of:
Environment:
Last Closed:	2000-08-04 18:51:18 UTC
Type:	---
Regression:	---
Mount Type:	---
Documentation:	---
CRM:
Verified Versions:
Category:	---
oVirt Team:	---
RHEL 7.3 requirements from Atomic Host:
Cloudforms Team:	---

Attachments	(Terms of Use)
Add an attachment (proposed patch, testcase, etc.)

Description Christian Rose 2000-08-04 15:47:52 UTC

The default umask in Pinstripe is 002 (rwxrwxr-x).
While this is fine for the default setting where each user belongs to his
own group, it is less suited for the scenario where each user belongs to
the same group by default. In that case, this umask is fatal security-wise.

I think that the umask 022 (rwxr-xr-x) should be used as the default, as it
is safe in both scenarios.

Comment 1 Bill Nottingham 2000-08-04 18:51:16 UTC

As discussed on testers-list, we aren't changing this.

Comment 2 Christian Rose 2000-08-04 20:12:32 UTC

My bad. Closing this.

Note You need to log in before you can comment on or make changes to this bug.