[pacman-dev] [PATCH] pacman-db-upgrade: set umask 022
Allan McRae
allan at archlinux.org
Tue Dec 23 01:18:51 UTC 2014
On 20/12/14 20:58, Peter Wu wrote:
> This prevents the database from becoming inaccessible for non-root
> users when the script was executed with a umask of 027.
>
> Signed-off-by: Peter Wu <peter at lekensteyn.nl>
> ---
Applied.
> Hi,
>
> It would probably be a good idea to set umask 022 for
> /var/cache/pacman/archives/ as well, but that is not as severe as this issue.
>
> If there are people who actually use 'umask 027' to make their packages
> unreadable, what about a global Umask setting in pacman.conf (defaulting to
> 022?).
I am happy with that staying how it is. A non-root user does not
particularly need access to these files.
Allan
More information about the pacman-dev
mailing list