On Tue, 2003-09-16 at 02:19, Matthew S. Hallacy wrote:
> On Mon, Sep 15, 2003 at 10:56:34PM -0500, David Phillips wrote:
> > If a user does not want a world readable home directory, he can change it:
> > 
> > chmod o-rx ~
> 
> Do you trust every single program you run to not set a file g+rw? The issue
> isn't readable home directories, it's readable files, bad umask, and naughty
> programs that write group read/write-able files.

Well, a good umask value can help sometimes.  Setting umask to 027 would
prevent most programs from making world-readable files.  Some apps would
undoubtedly ignore/override those permissions, but not too many...

-- 
 _  _  _  _ _  ___    _ _  _  ___ _ _  __   The BFI is after me!
/ \/ \(_)| ' // ._\  / - \(_)/ ./| ' /(__   
\_||_/|_||_|_\\___/  \_-_/|_|\__\|_|_\ __)  
[ Mike Hicks | http://umn.edu/~hick0088/ | mailto:hick0088 at tc.umn.edu ]
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 189 bytes
Desc: This is a digitally signed message part
Url : http://shadowknight.real-time.com/pipermail/tclug-list/attachments/20030916/1e48e26b/attachment.pgp