On Mon, Aug 09, Ludwig Nussel wrote:
Thorsten Kukuk wrote:
If you have a got solution how to handle existing, non private user groups using accounts... Neither the Ubuntu nor the Fedora way solves this.
The link I posted showed if [ $UID -gt 199 ] && [ "`/usr/bin/id -gn`" = "`/usr/bin/id -un`" ]; then umask 002 [...]
pam_umask has a similar safeguard: https://github.com/linux-pam/linux-pam/blob/master/modules/pam_umask/pam_uma...
Which always overwrites the umask the admin did configure, if we enable the usergroups option of pam_umask. So not a real working solution. Thorsten -- Thorsten Kukuk, Distinguished Engineer, Senior Architect SLES & MicroOS SUSE Software Solutions Germany GmbH, Maxfeldstr. 5, 90409 Nuernberg, Germany Managing Director: Felix Imendoerffer (HRB 36809, AG Nürnberg)