From owner-freebsd-security Sun May 5 03:51:16 1996 Return-Path: owner-security Received: (from root@localhost) by freefall.freebsd.org (8.7.3/8.7.3) id DAA09660 for security-outgoing; Sun, 5 May 1996 03:51:16 -0700 (PDT) Received: from lackowa.pap.waw.pl (lackowa.pap.waw.pl [194.92.35.33]) by freefall.freebsd.org (8.7.3/8.7.3) with SMTP id DAA09654 for ; Sun, 5 May 1996 03:51:10 -0700 (PDT) Received: from cergowa.waw.pl (cergowa [194.92.35.52]) by lackowa.pap.waw.pl (8.6.9/8.6.9) with ESMTP id MAA14444 for ; Sun, 5 May 1996 12:45:42 +0200 Received: by cergowa.waw.pl (SMI-8.6/SMI-SVR4) id MAA16372; Sun, 5 May 1996 12:45:46 +0200 From: jarekb@pap.waw.pl (Jaroslaw Bazydlo) Message-Id: <199605051045.MAA16372@cergowa.waw.pl> Subject: dot.cshrc and weird umask value To: freebsd-security@freebsd.org Date: Sun, 5 May 1996 12:45:46 +0200 (MET DST) X-Mailer: ELM [version 2.4 PL23] MIME-Version: 1.0 Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: 7bit Sender: owner-security@freebsd.org X-Loop: FreeBSD.org Precedence: bulk Can anyone tell me why on FreeBSD (the same with BSD/OS) there is the umask value 2 ???? This simply couses producing group writable files. Imagine the person which created .forward file, anyone in his group can modify this to reforward files or duplicate mails. This is in /usr/share/skel/dot.cshrc. I know that everyone can set proper value of umask but some not experienced users do not know about it. And even experienced administrators belive that the distribution skeleton files are good enough to copy then into user directory. Is there a reason for this ???? J. -- _ ____ ____ | | __ _| _ \ __ _/ ___| POLISH PRESS AGENCY - Warsaw _ | |/ _` | |_) / _` \___ \ email: ............... jarekb@pap.waw.pl | |_| | Jaroslaw Bazydlo __) | irc: McJARAS ...... on: #Polska #Gandalf \___/ \__,_|_| \_\__,_|____/. home-page: http://www.pap.waw.pl/~jarekb