File permissions and security (was: Hylafax & filePro vs. Vsifax)

Jay R. Ashworth jra at baylink.com
Thu May 20 12:29:56 PDT 2004


On Thu, May 20, 2004 at 02:41:18PM -0400, Barry Wiseman wrote:
> Not to goad the dragon out of his lair, Mark, but on the systems I've used,
> umask 0 results in 0666, not 0777 -- still global read/write permission,
> granted.  I know how commendably security minded you are, but balking at
> global permission to a temp file that's about to be deleted in a few
> milliseconds anyway, seems a bit much! :-)
> 
> Would a "umask 033" satisfy you, assuming the data is not confidential?
> Many users who are not ready to embark on group administration could benefit
> from a "safer" method of handing off files from filepro to other apps.

If you are using a fixed target file name, it's a race condition issue,
as much as a security one...

Cheers,
-- jra
-- 
Jay R. Ashworth                                                jra at baylink.com
Member of the Technical Staff     Baylink                             RFC 2100
The Suncoast Freenet         The Things I Think
Tampa Bay, Florida        http://baylink.pitas.com             +1 727 647 1274

        "They had engineers in my day, too."  -- Perry Vance Nelson


More information about the Filepro-list mailing list