Re: UPG and the default umask

To: debian-devel@lists.debian.org
Subject: Re: UPG and the default umask
From: Santiago Vila <sanvila@unex.es>
Date: Wed, 19 May 2010 19:25:08 +0200 (CEST)
Message-id: <[🔎] alpine.DEB.1.10.1005191903510.17907@cantor.unex.es>
In-reply-to: <[🔎] 844oi6k7x6.fsf@sauna.l.org>
References: <[🔎] 4BE830C8.5050009@gmail.com> <[🔎] 20100510162317.GI2652@radis.liafa.jussieu.fr> <[🔎] 87fx1ykjrt.fsf@windlord.stanford.edu> <[🔎] hsn1gf$cst$1@dough.gmane.org> <[🔎] 4BEFFA02.8000202@gmail.com> <[🔎] 87pr0vg07c.fsf@windlord.stanford.edu> <[🔎] alpine.DEB.1.10.1005170103200.6247@kolmogorov.unex.es> <[🔎] 84d3wvj7e5.fsf@sauna.l.org> <[🔎] alpine.DEB.1.10.1005171419450.12903@kolmogorov.unex.es> <[🔎] 844oi6k7x6.fsf@sauna.l.org>

For the record: I've changed the umask setting in /etc/profile to this:

if [ "`id -u`" -ge 1000 ]; then
  umask 002
else
  umask 022
fi

which is fully consistent with Debian policy when it says that user
accounts, by default, start at uid 1000.

So, this is now a very simple rule (umask 002) with a very simple
exception (not an user account), and I'm now confortable enough with
it to not ask it to be moved elsewhere (PAM or login.defs).

Some people proposed complex code to determine whether UPG was in use
for system users. Such thing would be an "exception to the exception"
and as such I think it would be a bad thing, as it would make things
a lot more complex without any real gain.

Thanks.

Reply to:

Follow-Ups:
- Re: UPG and the default umask
  - From: Aaron Toponce <aaron.toponce@gmail.com>
- Re: UPG and the default umask
  - From: Roger Leigh <rleigh@codelibre.net>
- Re: UPG and the default umask
  - From: Willi Mann <foss-ml@wm1.at>

References:
- UPG and the default umask
  - From: Aaron Toponce <aaron.toponce@gmail.com>
- Re: UPG and the default umask
  - From: Julien Cristau <jcristau@debian.org>
- Re: UPG and the default umask
  - From: Russ Allbery <rra@debian.org>
- Re: UPG and the default umask
  - From: Willi Mann <foss-ml@wm1.at>
- Re: UPG and the default umask
  - From: Aaron Toponce <aaron.toponce@gmail.com>
- Re: UPG and the default umask
  - From: Russ Allbery <rra@debian.org>
- Re: UPG and the default umask
  - From: Santiago Vila <sanvila@unex.es>
- Re: UPG and the default umask
  - From: Timo Juhani Lindfors <timo.lindfors@iki.fi>
- Re: UPG and the default umask
  - From: Santiago Vila <sanvila@unex.es>
- Re: UPG and the default umask
  - From: Timo Juhani Lindfors <timo.lindfors@iki.fi>

Prev by Date: Re: Parallellizing the boot in Debian Squeeze - ready for wider testing
Next by Date: Re: shutdown on power button?
Previous by thread: Re: UPG and the default umask
Next by thread: Re: UPG and the default umask
Index(es):
- Date
- Thread