-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Paul Stauffer wrote: > I've recently noticed that funcd and certmaster seem to be creating files > mode 666. For example: > > -rw-rw-rw- 1 root root 1346 Apr 14 17:00 /var/lib/certmaster/certmaster/certs/foo.bu.edu.cert > -rw-rw-rw- 1 root root 0 Apr 14 17:09 /var/lib/func/status-0 > -rw-rw-rw- 1 root root 0 Apr 19 04:25 /var/log/func/audit.log > -rw-rw-rw- 1 root root 5 Apr 14 16:21 /var/run/certmaster.pid > -rw-rw-rw- 1 root root 5 Apr 19 04:25 /var/run/funcd.pid > > I am using the latest EPEL packages for CentOS 5. None of these files are > installed as part of the RPM, so it's not a packaging issue. They're > running as root, and root's umask is 0022. > > Anyone else seeing this? Any clue where to point the blame stick? Is > something in the code incorrectly modifying the umask of the process? > > cheers, > - Paul > certmaster is explicitly setting it's umask to 0 (certmaster/utils.py:daemonize). That's definitely a bug; it should probably be set to 077 or at the very least 007. - -- John Eckersberg Software Applications Engineer IT Engineering Support Red Hat, Inc. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.9 (GNU/Linux) Comment: Using GnuPG with Fedora - http://enigmail.mozdev.org iEYEARECAAYFAknw8LAACgkQdxt4pd4ztYtofgCgqdpmUfQMrzxhkxZUZXiLdgyY X/UAoIVaFkPOaxPlVMrJijTzMHSiCE93 =g1ya -----END PGP SIGNATURE----- _______________________________________________ Func-list mailing list Func-list@xxxxxxxxxx https://www.redhat.com/mailman/listinfo/func-list
