From owner-freebsd-security Sun May 5 08:16:55 1996 Return-Path: owner-security Received: (from root@localhost) by freefall.freebsd.org (8.7.3/8.7.3) id IAA22000 for security-outgoing; Sun, 5 May 1996 08:16:55 -0700 (PDT) Received: from fslg8.fsl.noaa.gov (fslg8.fsl.noaa.gov [137.75.131.171]) by freefall.freebsd.org (8.7.3/8.7.3) with SMTP id IAA21991 for ; Sun, 5 May 1996 08:16:50 -0700 (PDT) Received: by fslg8.fsl.noaa.gov (5.57/Ultrix3.0-C) id AA25330; Sun, 5 May 96 15:16:36 GMT Message-Id: <9605051516.AA25330@fslg8.fsl.noaa.gov> Received: by emu.fsl.noaa.gov (1.40.112.3/16.2) id AA252669396; Sun, 5 May 1996 09:16:36 -0600 Date: Sun, 5 May 1996 09:16:36 -0600 From: Sean Kelly To: jarekb@pap.waw.pl Cc: freebsd-security@freebsd.org In-Reply-To: <199605051045.MAA16372@cergowa.waw.pl> (jarekb@pap.waw.pl) Subject: Re: dot.cshrc and weird umask value Sender: owner-security@freebsd.org X-Loop: FreeBSD.org Precedence: bulk >>>>> "Jaroslaw" == Jaroslaw Bazydlo writes: Jaroslaw> Can anyone tell me why on FreeBSD (the same with BSD/OS) Jaroslaw> there is the umask value 2 ???? This simply couses Jaroslaw> producing group writable files. Imagine the person which Jaroslaw> created .forward file, anyone in his group can modify Jaroslaw> this to reforward files or duplicate mails. A lot of sites create a separate group entry for each user. That is, user jarekb is a member of group jarekb, and no one else is a member. A separate group for each user relieves users of the worry that files they create might be readable by other group members. Since there are no other group members, there's no problem. -- Sean Kelly NOAA Forecast Systems Laboratory kelly@fsl.noaa.gov Boulder Colorado USA http://www-sdd.fsl.noaa.gov/~kelly/