[pacman-dev] [PATCH] pacman-db-upgrade: set umask 022

Allan McRae allan at archlinux.org
Tue Dec 23 01:18:51 UTC 2014

On 20/12/14 20:58, Peter Wu wrote:
> This prevents the database from becoming inaccessible for non-root
> users when the script was executed with a umask of 027.
> Signed-off-by: Peter Wu <peter at lekensteyn.nl>
> ---


> Hi,
> It would probably be a good idea to set umask 022 for
> /var/cache/pacman/archives/ as well, but that is not as severe as this issue.
> If there are people who actually use 'umask 027' to make their packages
> unreadable, what about a global Umask setting in pacman.conf (defaulting to
> 022?).

I am happy with that staying how it is.  A non-root user does not
particularly need access to these files.


More information about the pacman-dev mailing list