Ubuntu
ubuntu-meta package

Default umask too open

Bug #23597 reported by John Moser
4
Affects Status Importance Assigned to Milestone
ubuntu-meta (Ubuntu)
Invalid
Medium
Unassigned

Bug Description

The current default umask is 0022, which gives files 0644 (rw-r--r--) and
directories 0755 (rwxr-xr-x). This behavior leaves all files created by all
users readable by any user on the system. In practice, these files could
contain passwords, e-mail, Web browser cookies with credit card numbers, or
other sensitive information.

Please consider changing the default umask to 0077. This may cause some issues
with sharing files between users; various GUI tools could help with these
situations. For example, "Properties" dialogs should allow a user to
recursively change permissions on one or more files and directories. It's not
without its pitfalls; but in production, it may be important to not share all
information by default.

This is similar to bug #23595

Revision history for this message
Matt Zimmerman (mdz) wrote :

Same answers as in bug #23595

Revision history for this message
Lars Noodén (larsnooden) wrote : default umask still too open

the default umask is 0022, but should be 0027 instead

this is in

/etc/lsb-release
DISTRIB_ID=Ubuntu
DISTRIB_RELEASE=6.06
DISTRIB_CODENAME=dapper
DISTRIB_DESCRIPTION="Ubuntu 6.06.1 LTS"

Linux 2.6.15-23-powerpc #1 Tue May 23 13:46:54 UTC 2006 ppc GNU/Linux

Revision history for this message
Lars Noodén (larsnooden) wrote : default umask still too open 2

this is a problem for regular accounts, too

To post a comment you must log in.
This report contains Public information  
Everyone can see this information.
Subscribing...

Other bug subscribers

Remote bug watches

Bug watches keep track of this bug in other bug trackers.