I noticed a difference between two check umask types of scripts. I am using the 3.2.1 distribution in Debian 4.0. The script I am comparing against is tiger/scripts/check_umask. The umask checks there include:
[ $UMASK1 != 002 -a $UMASK1 != 022 -a $UMASK1 != 027 -a $UMASK1 != 077 ] [ $UMASK1 != 002 -a $UMASK1 != 022 -a $UMASK1 != 027 -a $UMASK1 != 077 -o $UMASK2 != 002 -a $UMASK2 != 022 -a $UMASK2 != 027 -a $UMASK2 != 077 ] && In contrast, tiger/systems/Linux/2/check_rcumask is limited to checking umasks of 002 and 022. The check would fail the more restricive 027 and 077 indicating them as less secure. I would suggest copying the checks from check_umask. The question is around lines 114 and 131. [ $UMASK1 != 002 -a $UMASK1 != 022 ] && [ $UMASK1 != 002 -a $UMASK1 != 022 -o $UMASK2 != 002 -a $UMASK2 != 022 ] && Thank you, Doug Peterson _______________________________________________ Tiger-user mailing list [email protected] http://lists.nongnu.org/mailman/listinfo/tiger-user
