File permissions and security (was: Hylafax & filePro vs.
Vsifax)
Jay R. Ashworth
jra at baylink.com
Thu May 20 12:29:56 PDT 2004
On Thu, May 20, 2004 at 02:41:18PM -0400, Barry Wiseman wrote:
> Not to goad the dragon out of his lair, Mark, but on the systems I've used,
> umask 0 results in 0666, not 0777 -- still global read/write permission,
> granted. I know how commendably security minded you are, but balking at
> global permission to a temp file that's about to be deleted in a few
> milliseconds anyway, seems a bit much! :-)
>
> Would a "umask 033" satisfy you, assuming the data is not confidential?
> Many users who are not ready to embark on group administration could benefit
> from a "safer" method of handing off files from filepro to other apps.
If you are using a fixed target file name, it's a race condition issue,
as much as a security one...
Cheers,
-- jra
--
Jay R. Ashworth jra at baylink.com
Member of the Technical Staff Baylink RFC 2100
The Suncoast Freenet The Things I Think
Tampa Bay, Florida http://baylink.pitas.com +1 727 647 1274
"They had engineers in my day, too." -- Perry Vance Nelson
More information about the Filepro-list
mailing list