umask issue
Brought to you by:
mteel
The function radUtilsBecomeDaemon() in radsysutils.c calls umask(0). This causes applications that become daemon to write files with rw permissions open to user, group and other.
This is a security breach. The call to umask should be removed, it is the administrator's responsibility to set the proper umask before starting services.