On 12/20/05, Jeremy Huntwork <[EMAIL PROTECTED]> wrote: > Setting the umask value is important for security. Here the default > group write permissions are turned off for system users and when the > user name and group name *are not* the same. > > However, if I'm reading the script correctly, this actually happens when > the user and group name *are* the same and it's an id above 99: > > if [ "$(id -gn)" = "$(id -un)" -a $EUID -gt 99 ] ; then > umask 002
That's right. The default is 022. This tests whether normal users (UID>99) have the same user and group name. If they are, then they create group writable files and directories with a new umask. Possibly the umask notation's throwing you for a loop? Actually, reading the first paragraph does sound wrong. It should be something like "Here the default group write permissions are overridden for non-system users whose user name and group name are the same." That wording kind of sucks, but it's more accurate. -- Dan -- http://linuxfromscratch.org/mailman/listinfo/blfs-dev FAQ: http://www.linuxfromscratch.org/blfs/faq.html Unsubscribe: See the above information page
