When I open an attachment of an email in Thunderbird it gets written to disk with permission 644, so it is readable by everyone on the system.
How to repeat: Open an E-Mail, Open an Attachment (e.g. google.png)
$ cd /tmp; ls -lh
-rw-r--r-- 1 theuser thegroup 2,4K Dez 11 10:39 google.png
Instead, Thunderbird should write the file with permissions 600. Plus, to avoid conflicts between users, the file should be written into a directory per user, e.g. /tmp/theuser/google.png or another user specific temp directory.
When I open an attachment of an email in Thunderbird it gets written to disk with permission 644, so it is readable by everyone on the system.
How to repeat: Open an E-Mail, Open an Attachment (e.g. google.png)
$ cd /tmp; ls -lh
-rw-r--r-- 1 theuser thegroup 2,4K Dez 11 10:39 google.png
Instead, Thunderbird should write the file with permissions 600. Plus, to avoid conflicts between users, the file should be written into a directory per user, e.g. /tmp/theuser/ google. png or another user specific temp directory.