sshd umask settings vs security

Damien Miller djm at mindrot.org
Thu Sep 23 17:25:07 EST 2004


Jeremy Jackson wrote:
> Will setting the umask that sshd inherits cause any security issues?  It 
> would be nice to be able to set this in a system-wide fashion, rather 
> than in .login etc.

If the umask is more restrictive than the default then no. If the
umask is less restrictive than the default and sshd creates files
with restrictive permissions, then that is a bug in sshd.

> I'm thinking of Debian, where the setting is per-shell because nobody 
> seems to have thought of doing this.

/etc/bashrc ?

-d




More information about the openssh-unix-dev mailing list