10-22-2001
umask problems
neerajchallana,
Couple of questions. My answer is from the point of view of HPUX OS.
What OS version do you have?
Are you trying to do this remotely?
Perform these commands and see what you get.
umask
umask -S
remsh systemname umask
remsh systemname umask -S
Check your /etc/profile. It is the default profile for users if they don't have a .profile in their home directory.
Also, check in each affected user's home directory .profile. Do "grep umask .profile" in the user's home dir. If you get nothing then you will need to modify their .profile and add a line like this:
umask 002
:wq!
I have recently found out that if you execute remsh with your system name and umask, you get the DEFAULT for the system type you have regardless of the umask that you set when files are created. This is a security measure built into the OS, at least for HPUX.
On "trusted" systems, the default umask for remote access is 066.
On an non-trusted system, the default umask is 000.
Also, another little tidbit. If you set your umask to some exe permissions, like umask 000. Touch a file and check the permissions on it. I guarantee you it will only be 666! Do it and find out.
# umask 000
# touch file1
# ls -l file1
-rw-rw-rw- file1
This maybe too much info, but I just had an issue with umask and remsh.
10 More Discussions You Might Find Interesting
1. UNIX for Dummies Questions & Answers
in this unix book that i have, it says:
the statement:
filedes = open(pathname, O_CREAT, mode);
is actually
filedes = open(pathname, O_CREAT, (~mask)&mode); /* ~ is the negation symbol */
like it's doing some type of masking.
for example,
fd =... (1 Reply)
Discussion started by: bb00y
1 Replies
2. UNIX for Dummies Questions & Answers
the umask on solaris must return 022 or 0022
wich one is correct and why?
thanks,
pa (2 Replies)
Discussion started by: rsh
2 Replies
3. UNIX for Dummies Questions & Answers
I am having a major issue with our server...
In our web application, we have a feature by which a client can upload a file and submit the page...
This was a feature which was working fine till recently...we changed the server and I guess some settings changed.
Now it keeps throwing an apache... (3 Replies)
Discussion started by: chimpu
3 Replies
4. AIX
I changed the umask in /etc/security/user to 027.
I changed the umask in /etc/profile to 027.
My current shell is ksh.
My .profile doesn't make any changes to umask or call other scripts that change umask.
Running AIX 5.3
I still get a umask of 022 instead of the expected 027. I have no... (1 Reply)
Discussion started by: x96riley3
1 Replies
5. Linux
hai guys ,
i am having problem in getting the knowledge about umask.
actually when i am putting command as umask some value is coming like 0022 by defalut.
we can change its value also.
but the main thing is thye file permisiion actually depends upon umask.how is it depends upon umask i want to... (6 Replies)
Discussion started by: suvendu4urs
6 Replies
6. UNIX for Dummies Questions & Answers
Hi,
I have a doubt on the umask values.
Why is the UMASK value is different from file and directory?
Suppose if the umask value is 0022. The file permissions for a newly created file is 644 and the file permissions for a newly created directory is 755.
My doubt is why can't it be the... (1 Reply)
Discussion started by: praveen_b744
1 Replies
7. UNIX for Dummies Questions & Answers
I need to set a umask of 022 for my ssh sessions, or within my profile.
I have set the umask in both bash_profile and bashrc.
and when i run umask i get 0022 but when i create a file i get,
# touch test.txt
# ls -l test.txt
-rw------- 1 root root 0 Apr 26 12:25 test.txt
it seems like... (1 Reply)
Discussion started by: felix001
1 Replies
8. UNIX for Advanced & Expert Users
Hi,
Please, let me know how the umask is working? As per my understanding is aprt from subtracting from 666/777, logical gate operation is performing.
Ex: If I set uname 011, it gave the permission like 666 for file. Request you to explain which gate's operation performed.
$uname 011... (4 Replies)
Discussion started by: Nagapandi
4 Replies
9. AIX
How do I change the umask for a NIS user?
Thanks
steve (1 Reply)
Discussion started by: steve.lavoie
1 Replies
10. UNIX for Dummies Questions & Answers
Hi guys,
I want all new files and directories created, or copy file give this permisson "rwxrwx---", with chmod i do this with octal value "770". If i execute "umask 770" the permissons is not the same with new or copy file. How can i configure this command? I do not understand the "man... (1 Reply)
Discussion started by: Xedrox
1 Replies
LEARN ABOUT CENTOS
pam_umask
PAM_UMASK(8) Linux-PAM Manual PAM_UMASK(8)
NAME
pam_umask - PAM module to set the file mode creation mask
SYNOPSIS
pam_umask.so [debug] [silent] [usergroups] [umask=mask]
DESCRIPTION
pam_umask is a PAM module to set the file mode creation mask of the current environment. The umask affects the default permissions assigned
to newly created files.
The PAM module tries to get the umask value from the following places in the following order:
o umask= argument
o umask= entry in the user's GECOS field
o UMASK= entry from /etc/default/login
o UMASK entry from /etc/login.defs
The GECOS field is split on comma ',' characters. The module also in addition to the umask= entry recognizes pri= entry, which sets the
nice priority value for the session, and ulimit= entry, which sets the maximum size of files the processes in the session can create.
OPTIONS
debug
Print debug information.
silent
Don't print informative messages.
usergroups
If the user is not root and the username is the same as primary group name, the umask group bits are set to be the same as owner bits
(examples: 022 -> 002, 077 -> 007).
umask=mask
Sets the calling process's file mode creation mask (umask) to mask & 0777. The value is interpreted as Octal.
MODULE TYPES PROVIDED
Only the session type is provided.
RETURN VALUES
PAM_SUCCESS
The new umask was set successfully.
PAM_SERVICE_ERR
No username was given.
PAM_USER_UNKNOWN
User not known.
EXAMPLES
Add the following line to /etc/pam.d/login to set the user specific umask at login:
session optional pam_umask.so umask=0022
SEE ALSO
pam.conf(5), pam.d(5), pam(8)
AUTHOR
pam_umask was written by Thorsten Kukuk <kukuk@thkukuk.de>.
Linux-PAM Manual 09/19/2013 PAM_UMASK(8)