If i remove the package (aptitude purge all-sssd-packages), do rm -rf /var/lib/sss, remove every trace of sssd then reinstall the package, they still return with 644 permission.
And doing an strace of sssd when it starts up also shows that umask is being set so the resulting sockets get 644 permission.
It is /usr/lib/x86_64-linux-gnu/sssd/sssd_nss and /usr/lib/x86_64-linux-gnu/sssd/sssd_pam that creates the sockets, both part of sssd-common.
I still say it's a bug in the sssd package.
If i remove the package (aptitude purge all-sssd-packages), do rm -rf /var/lib/sss, remove every trace of sssd then reinstall the package, they still return with 644 permission.
And doing an strace of sssd when it starts up also shows that umask is being set so the resulting sockets get 644 permission.
It is /usr/lib/ x86_64- linux-gnu/ sssd/sssd_ nss and /usr/lib/ x86_64- linux-gnu/ sssd/sssd_ pam that creates the sockets, both part of sssd-common.