The homedir of the user I created during the installer, had 755 permissions. Hence when I create a second user on my system using userdrake, this user can enter the first user's homedir and even read its documents (because default umask is 0022). The homedir of the second user created using userdrake after the installation, had 0700 permissions, so that's fine. Maybe you should also consider setting the default umask to 0027, as users have their private group anyway, and can simply add other users to their own private group if they want to make files accessible for others.
First part is bug 618. Keeping it open for the default umask changing suggestion. There's no definite package which could have all these fixed, as the umask is set by /etc/bashrc and msec sets another umask, i.e. it's a mess.
CC: (none) => pterjan
Component: Installer => RPM Packages
(In reply to comment #1) > First part is bug 618. > > Keeping it open for the default umask changing suggestion. > > There's no definite package which could have all these fixed, as the umask is > set by /etc/bashrc and msec sets another umask, i.e. it's a mess. @ shlomif As there isn't a msec maintainer yet, I'm assigning this bug to you (and AFAIK it is impossible to assign to two maintainers at the same time, anyway)
CC: (none) => marja11Assignee: bugsquad => shlomifSummary: User's homedir world readable => Set default umask to 0027 (Was: User's homedir world readable)Source RPM: (none) => bash 4.2-5.mga1 msec 0.80.10-2.mga1Severity: critical => enhancement
Pinging. because nothing happened to this report since more than 3 months ago, and it still has the status NEW or REOPENED. @ Shlomif There is a msec maintainer now, D Morgan. I'll cc him, but as you know, he might not see this comment. If you want to reassign this bug to him, that is fine with me (I suppose you'll have to work on it together, anyway)
CC: (none) => dmorganec
@ Marja: I'm assigning this to D Morgan.
Assignee: shlomif => dmorganec
Hi, This bug was filed against cauldron, but we do not have cauldron at the moment. Please report whether this bug is still valid for Mageia 2. Thanks :) Cheers, marja
Keywords: (none) => NEEDINFO
Keywords: NEEDINFO => (none)Whiteboard: (none) => (Mga2)
Still valid. malo intends to change the default umask in shadow-utils to 0027 (see bug 618)
(In reply to Marja van Waes from comment #6) > malo intends to change the default umask in shadow-utils to 0027 (see bug > 618) https://ml.mageia.org/l/arc/dev/2013-04/msg00651.html : > If the home is not even g+x, how are we supposed to share documents > between users now? > This will cause regressions for users that we were used to share > documents between each other.
Assignee: dmorganec => bugsquad
Closing as duplicate of bug 618 since any change would have to be done in a coherent way while solving it. *** This bug has been marked as a duplicate of bug 618 ***
Status: NEW => RESOLVEDResolution: (none) => DUPLICATE