Your message dated Tue, 30 Oct 2007 22:55:22 +0000
with message-id <[EMAIL PROTECTED]>
and subject line umask is now set
has caused the attached Bug report to be marked as done.
This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.
(NB: If you are a system administrator and have no idea what I am
talking about this indicates a serious mail system misconfiguration
somewhere. Please contact me immediately.)
Debian bug tracking system administrator
(administrator, Debian Bugs database)
--- Begin Message ---
Package: tzdata
Version: 2006p-1
Severity: important
Tags: patch
The postinstall script for tzdata creates the /etc/localtime file with
permissions 0600 which prevents users of the system from determining
the localtime. The attached patch ensures that after copying the
timezone information file to /etc/localtime the permissions are set
such that users of the system can access the file. This happens
because the umask is set to 0066 when the file is created.
diff -Naur tzdata-2006p/debian/postinst tzdata-2006p-mod/debian/postinst
--- tzdata-2006p/debian/postinst 2007-03-02 15:33:34.000000000 -0500
+++ tzdata-2006p-mod/debian/postinst 2007-03-02 15:32:48.000000000 -0500
@@ -70,6 +70,7 @@
# zic -l $timezone
rm -f /etc/localtime && \
cp -f /usr/share/zoneinfo/$timezone /etc/localtime
+ chmod 0644 /etc/localtime
zone_banner
# Handle problem caused by lame old tzconfig.
elif [ "$timezone" = "US/Pacific-New" ]
@@ -78,6 +79,7 @@
# zic -l US/Pacific
rm -f /etc/localtime && \
cp -f /usr/share/zoneinfo/US/Pacific /etc/localtime
+ chmod 0644 /etc/localtime
zone_banner
else
set_timezone
-- System Information:
Debian Release: 4.0
APT prefers testing
APT policy: (500, 'testing')
Architecture: amd64 (x86_64)
Shell: /bin/sh linked to /bin/bash
Kernel: Linux 2.6.18
Locale: LANG=en_CA.UTF-8, LC_CTYPE=en_CA.UTF-8 (charmap=UTF-8)
-- no debconf information
--- End Message ---
--- Begin Message ---
Version: 1.14.7
At least in 1.14.7, the umask is set at startup now. I have tested
this:
[EMAIL PROTECTED]:build> umask 077
[EMAIL PROTECTED]:build> dpkg -i ../test-packages/413151.deb
Selecting previously deselected package test-dpkg-413151.
(Reading database ... 206789 files and directories currently installed.)
Unpacking test-dpkg-413151 (from ../test-packages/413151.deb) ...
Setting up test-dpkg-413151 (1) ...
[EMAIL PROTECTED]:build> ll /root/test-dpkg-413151
-rw-r--r-- 1 root ian 29 Oct 30 22:51 /root/test-dpkg-413151
[EMAIL PROTECTED]:build> dpkg -I ../test-packages/413151.deb postinst
#!/bin/sh
date >/root/test-dpkg-413151
[EMAIL PROTECTED]:build> umask 002
[EMAIL PROTECTED]:build>
Ian.
--- End Message ---
