Bug 15404 - Wrong default umask
Summary: Wrong default umask
Alias: None
Product: Red Hat Linux
Classification: Retired
Component: bash   
(Show other bugs)
Version: 7.0
Hardware: i386
OS: Linux
Target Milestone: ---
Assignee: Bernhard Rosenkraenzer
QA Contact:
Keywords: Security
Depends On:
TreeView+ depends on / blocked
Reported: 2000-08-04 15:47 UTC by Christian Rose
Modified: 2008-05-01 15:37 UTC (History)
2 users (show)

Fixed In Version:
Doc Type: Bug Fix
Doc Text:
Story Points: ---
Clone Of:
Last Closed: 2000-08-04 18:51:18 UTC
Type: ---
Regression: ---
Mount Type: ---
Documentation: ---
Verified Versions:
Category: ---
oVirt Team: ---
RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: ---

Attachments (Terms of Use)

Description Christian Rose 2000-08-04 15:47:52 UTC
The default umask in Pinstripe is 002 (rwxrwxr-x).
While this is fine for the default setting where each user belongs to his
own group, it is less suited for the scenario where each user belongs to
the same group by default. In that case, this umask is fatal security-wise.

I think that the umask 022 (rwxr-xr-x) should be used as the default, as it
is safe in both scenarios.

Comment 1 Bill Nottingham 2000-08-04 18:51:16 UTC
As discussed on testers-list, we aren't changing this.

Comment 2 Christian Rose 2000-08-04 20:12:32 UTC
My bad. Closing this.

Note You need to log in before you can comment on or make changes to this bug.