Menu

#2 umask issue

open
nobody
None
5
2011-11-17
2011-11-17
theHog
No

The function radUtilsBecomeDaemon() in radsysutils.c calls umask(0). This causes applications that become daemon to write files with rw permissions open to user, group and other.

This is a security breach. The call to umask should be removed, it is the administrator's responsibility to set the proper umask before starting services.

Discussion


Log in to post a comment.

Want the latest updates on software, tech news, and AI?
Get latest updates about software, tech news, and AI from SourceForge directly in your inbox once a month.