[Pkg-shadow-devel] Bug#581413: The default umask in Debian should be changed to '0002' to be fully compliant with user private groups

Petter Reinholdtsen pere at hungry.com
Tue Feb 25 08:50:07 UTC 2014

In Redhat, the default umask is set in /etc/profile, and it is different
depending on the default group.  If the default group name matches the
user name, the umask is set to 002, while if it isn't, the umask is set
to 022.  This seem like a good idea to also implement for Debian?

This is the Redhat implementation:

  # By default, we want umask to get set. This sets it for login shell
  # Current threshold for system reserved uid/gids is 200
  # You could check uidgid reservation validity in
  # /usr/share/doc/setup-*/uidgid file
  if [ $UID -gt 99 ] && [ "`id -gn`" = "`id -un`" ]; then
    umask 002
    umask 022

So perhaps the default should be 022, and the user setting should be
overrided at login time if there is a private group active?

Happy hacking
Petter Reinholdtsen

More information about the Pkg-shadow-devel mailing list