Comment 10 for bug 1227027
Revision history for this message
| Xavier Queralt (xqueralt-deactivatedaccount) wrote Re: Insecure directory permissions with snapshot code | #10 |
© 2004
Canonical Ltd.
•
Terms of use
•
Data privacy
•
Contact Launchpad Support
•
Blog
•
Careers
•
System status
•
0e1f616
(Get the code!)
I've isolated the fix for this bug from the patch I was working on for bug 1129748 so it doesn't depend on any new rootwrap rule. With it the temporary directory is created with the correct permissions (751) and its contents (the images) are made only readable to the owner of the process by changing the file-creation mask for the whole snapshot method.
I think it should be easily backportable now.