[Pkg-gnutls-maint] Bug#373169: Bug#373169: please set permissions on key output to 600
martin f krafft
madduck at debian.org
Fri May 16 17:46:46 UTC 2008
also sprach Daniel Kahn Gillmor <dkg-debian.org at fifthhorseman.net> [2008.05.16.1807 +0100]:
> Better would be to call umask(S_IRGRP|S_IWGRP|S_IROTH|S_IWOTH)
> before opening the output file (and set it back afterward, if you
> care).
Why not rely on a tempfile() method to create a tempfile with
restrictive permissions, which is then moved into place?
Umask fiddling is, however, another possibility.
--
.''`. martin f. krafft <madduck at debian.org>
: :' : proud Debian developer, author, administrator, and user
`. `'` http://people.debian.org/~madduck - http://debiansystem.info
`- Debian - when you have better things to do than fixing systems
. `___
(o- (o- (o- (o- (o- (o- (o- /\/| | |
//\ //\ //\ //\ //\ //\ //\ ` /\/\/l-+-|
v_/_ v_/_ v_/_ v_/_ v_/_ v_/_ v_/_ .` /\/\/|_|_|
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 189 bytes
Desc: Digital signature (see http://martin-krafft.net/gpg/)
Url : http://lists.alioth.debian.org/pipermail/pkg-gnutls-maint/attachments/20080516/6d8db776/attachment.pgp
More information about the Pkg-gnutls-maint
mailing list