Page MenuHome GnuPG
Create Task
Maniphest T1653

Always disallow group- and other-readable permission
Closed, ResolvedPublic
Actions

Description

Sensitive files like secret keys, revocation certificates, and just-decrypted
files shouldn't be visible to other users on a multi-user system. However, gpg
currently creates all of these files with the default permissions. Often, the
user's umask is improperly configured, so that the files are created with
permissions -rw-r--r--, instead of a more sane -rw-------. Even though the user
should configure their umask correctly, it seems like gpg should do this anyway.
Therefore, I propose that when these files are created, they are always created
without any permissions set for group and other.

A previous bug report [0] addressing only decrypted files was given an offer to
be turned into a feature request, but this never happened. In addition, the fact
that this affects exported secret keys and revocation certificates is more
troubling than decrypted files.

Related Objects

Event Timeline

istvanchung added projects: Feature Request, gnupg.Jun 13 2014, 2:50 AM
istvanchung added a subscriber: istvanchung.
werner added a project: gnupg (gpg21).Jun 24 2014, 2:51 PM
werner added a subscriber: werner.

I consider to do this for 2.1

werner added a comment.Jun 30 2014, 9:16 AM

Fic for master with commit c434de4. However decryptyed files are not subject to
this because that would for sure breakk too man applications.

werner closed this task as Resolved.Jun 30 2014, 9:16 AM
werner claimed this task.