On 05/13/2010 11:21 AM, Debian Bug Tracking System wrote: > This is an automatic notification regarding your Bug report > which was filed against the base-files package: > > #581434: The default umask in Debian should be changed to '0002' to be fully > compliant with user private groups > > It has been closed by Santiago Vila <[email protected]>. > > Their explanation is attached below along with your original report. > If this explanation is unsatisfactory and you have not received a > better one in a separate message then please contact Santiago Vila > <[email protected]> by > replying to this email.
I think some additional configuration might need to be in place with
this change. UPG assumes that the group is indeed private. However, this
isn't necessarily the case for system accounts, where the UID < 100 (per
the Debian docs). There might be many members of the wheel group, tty
group, etc with this umask isn't appropriate, as technically, the group
isn't a "UPG". So, some logic should be placed in the /etc/profile file
to accommodate this:
# If not a system account, and the user name matches the group name
# it's a user private group, and set umask=0002. Otherwise, it's not
# a user private group, so set umask=0022.
if [ "$UID" -gt 99 ] && [ "$(id -un)" = "$(id -gn)" ]; then
umask 0002
else
umask 0022
fi
Thoughts?
--
. O . O . O . . O O . . . O .
. . O . O O O . O . O O . . O
O O O . O . . O O O O . O O O
signature.asc
Description: OpenPGP digital signature
