On Oct 14, 2009, at 11:10 AM, Peter Palfrader wrote:
Hi David,
On Tue, 13 Oct 2009, Ian Zimmerman wrote:
When paperkey is given the -o flag and the output file doesn't
already
exist, it is created with normal permissions - (644). This is
clearly
bad. It would be OK to just mention in the manpage so I can either
pre-create the file or set my umask before running paperkey, but it
does need to be pointed out.
It appears paperkey creates the output file with permissions only
constrained by the user's umask.
I agree with Ian here that it might be prudent to create the file with
go-rwx. (I think that's preferable to just documenting the fact that
files are world readable.)
I agree, and I'll rev paperkey to create files with 0600.
David
--
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
