Mailinglist Archive: opensuse-security (191 mails)
| < Previous | Next > |
/etc/rc.config sets umask to 022
- From: Volker Kuhlmann <kuhlmav@xxxxxxxxxxxxxxxxxxxxx>
- Date: Sat, 15 Apr 2000 14:58:15 +1200 (NZST)
- Message-id: <200004150258.OAA03582@xxxxxxxxxxxxxxxxxxxxxxxxxxx>
I just noticed that the /etc/rc.config script sets the umask to 022
(SuSE 6.3). It does not seem to be something which can be changed with
yast, even when editing rc.config with yast directly. Considering
that all system daemons get started with this umask, isn't that a
rather bad choice? For example I don't want apache log files to be
user-readable. Each time the log files get rotated and apache restarted,
the logs would be created with permissions 644. Are there any daemons
which create files and not explicitly set the permissions to user-readable
if necessary? If not then there's no reason to run all of them with 022.
Volker
(SuSE 6.3). It does not seem to be something which can be changed with
yast, even when editing rc.config with yast directly. Considering
that all system daemons get started with this umask, isn't that a
rather bad choice? For example I don't want apache log files to be
user-readable. Each time the log files get rotated and apache restarted,
the logs would be created with permissions 644. Are there any daemons
which create files and not explicitly set the permissions to user-readable
if necessary? If not then there's no reason to run all of them with 022.
Volker
| < Previous | Next > |