umask
Jez Hancock
jez.hancock at munk.nu
Thu Aug 14 12:12:40 PDT 2003
On Thu, Aug 14, 2003 at 08:25:15PM +0200, Antoine Jacoutot wrote:
> -----BEGIN PGP SIGNED MESSAGE-----
> Hash: SHA1
>
> On Thursday 14 August 2003 20:19, Joshua Oreman wrote:
> > 066 will be *more* secure than 022.
>
> I know that :)
>
> > This is because a umask is deducted from the default permission bits of 666
> > (or 777 for executables) on new files. So a umask of 022 will cause new
> > files to have a mode of 600 or 711.
>
> Yes I know, I was just wondering why the default behaviour was not very
> secure.
>
> > * 077 (600 or 700 -- most secure)
>
> So, if I set umask to 077, this is OK, right ? Is there ANY cons ?
Some applications require a less strict umask to install files correctly
with the right permissions - quite often you aren't warned about this
either and it can be a headache finding out which file perms are
incorrect.
--
Jez
http://www.munk.nu/
More information about the freebsd-questions
mailing list