[Adduser-devel] Bug#331720: adduser: deluser --backup creates world readable file

Marc Haber mh+debian-packages at zugschlus.de
Sat Oct 22 10:01:20 UTC 2005

tags #331720 confirmed
user adduser at packages.debian.org
usertags #331720 valid-bug joerg-assigned

On Wed, Oct 05, 2005 at 12:04:29AM +0200, Martin Geisler wrote:
> When making a backup with deluser, the resulting file is created like
> any other file made by root, and with my umask of 022 it is world
> readable.


> This is bad since then everybody who get hold of it has access to the
> old users files if the administrator does not take care to store the
> backup in some safe place.

You're absolutely right. This will be fixed. Do you think that a
hardcoded root:root 600 is fine, or does that need to be configuable?


Marc Haber         | "I don't trust Computers. They | Mailadresse im Header
Mannheim, Germany  |  lose things."    Winona Ryder | Fon: *49 621 72739834
Nordisch by Nature |  How to make an American Quilt | Fax: *49 621 72739835

More information about the Adduser-devel mailing list