[Zope] Re: installation security best practice question

Andreas Jung lists at zopyx.com
Wed Mar 15 11:35:05 EST 2006


--On 15. März 2006 11:00:03 -0500 Tres Seaver <tseaver at palladion.com> 
wrote:
>
> OK, after some investigation:  the issue is not the weird UID/GID on the
> files (which get preserved when unpacking the tarball as root);  the
> issue is that the person making the file had their umask set to harshly
> (0077, likely), which means that the files are not readable by anyone
> but the owner.  A workaround is to change the readability after
> unpacking the tarball, e.g.:
>
>  $ chmod -R a+r .
>
> Andreas, can you confirm?

ACK

Usually I build the release on my Linux box where the umask is 0002
however 2.8.6/2.9.1 have been build during Pycon on my Powerbook where
the umask is 0077.

I recreated the archives and re-uploaded them just some minutes ago.

Andreas
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 186 bytes
Desc: not available
Url : http://mail.zope.org/pipermail/zope/attachments/20060315/8c2157b2/attachment.bin


More information about the Zope mailing list