From mboxrd@z Thu Jan 1 00:00:00 1970 Return-Path: Received: from localhost (localhost [127.0.0.1]) by arlo.cworth.org (Postfix) with ESMTP id A10BE6DE0183 for ; Sun, 4 Feb 2018 13:00:07 -0800 (PST) X-Virus-Scanned: Debian amavisd-new at cworth.org X-Spam-Flag: NO X-Spam-Score: -0.008 X-Spam-Level: X-Spam-Status: No, score=-0.008 tagged_above=-999 required=5 tests=[AWL=-0.008] autolearn=disabled Received: from arlo.cworth.org ([127.0.0.1]) by localhost (arlo.cworth.org [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 35iqxCjd8LtP for ; Sun, 4 Feb 2018 13:00:07 -0800 (PST) Received: from che.mayfirst.org (che.mayfirst.org [162.247.75.118]) by arlo.cworth.org (Postfix) with ESMTPS id D79096DE010F for ; Sun, 4 Feb 2018 13:00:06 -0800 (PST) Received: from fifthhorseman.net (ool-6c3a0662.static.optonline.net [108.58.6.98]) by che.mayfirst.org (Postfix) with ESMTPSA id E6C8EF99A; Sun, 4 Feb 2018 16:00:05 -0500 (EST) Received: by fifthhorseman.net (Postfix, from userid 1000) id 325CF2067D; Sun, 4 Feb 2018 16:00:00 -0500 (EST) From: Daniel Kahn Gillmor To: Gaute Hope , Notmuch Mail Subject: Re: umask/permissions on new files created via notmuch-insert(1) ? In-Reply-To: <1517772761.o1m1n3158p.astroid@strange.none> References: <87k1vs1rrw.fsf@fifthhorseman.net> <1517772761.o1m1n3158p.astroid@strange.none> Date: Sun, 04 Feb 2018 15:59:56 -0500 Message-ID: <87efm01neb.fsf@fifthhorseman.net> MIME-Version: 1.0 Content-Type: multipart/signed; boundary="=-=-="; micalg=pgp-sha512; protocol="application/pgp-signature" X-BeenThere: notmuch@notmuchmail.org X-Mailman-Version: 2.1.24 Precedence: list List-Id: "Use and development of the notmuch mail system." List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sun, 04 Feb 2018 21:00:07 -0000 --=-=-= Content-Type: text/plain Content-Transfer-Encoding: quoted-printable On Sun 2018-02-04 20:34:09 +0100, Gaute Hope wrote: > Daniel Kahn Gillmor writes on februar 4, 2018 20:25: >> is there a reason that "notmuch insert" should be stricter than the >> umask? does this ring any bells for people? > > Are you asking why it is or why it should? If former; maybe because of=20 > line 230 in notmuch-insert.c ? yep, that's definitely the cause of it, but looking through the git history, it seems to have no clear justification. do other LDA programs behave this way? is there a reason to not 0666 or 0644 ? seems like the umask is where people should be making these choices, and mail being delivered doesn't necessarily need this kind of lockdown. we're running into this when looking at a mailing list archiver -- i want messages to be delivered via "notmuch insert" as the mailbox owner. but the mailbox viewer is going to be a different user, and they need read-only access to the archive. instead, they're completely locked out. am i missing something? --dkg --=-=-= Content-Type: application/pgp-signature; name="signature.asc" -----BEGIN PGP SIGNATURE----- iQIzBAEBCgAdFiEEzicvlOwymaWlnoHjyu+ogyFnUzMFAlp3dEwACgkQyu+ogyFn UzNW2BAAjNZA1wGgjjJ0uyadJqQF0cU0qCvlD9yhkR0OethXlj/EsOkNDphLy9PZ DcgE4smO4q8Z6OEVyV/V44odp6qYOtiOmscYCCZjnHgJPDRiRJNLDggF3ATbXxlu KVdFnJWL+9rmJ8qWui2L+IwDg1ff6hR5+HJidbo+NxwVMdSUIOvQC3i2+gAE2pHQ 8E7wDY/Ui8fpIUciMpZ1fdSSaPIETIuWtgAvKBiWVGZz45fsvfUYNgWrL7CDHZ+N BjpigVxdgWfe4YlMgylpf2jTvee6VFFinew927HUT/E8vSIZfuaXACH9vx7VmO4K DOxp65+TuG39gk7EE3LYHP6/Vnx2DYyjYNE8ToDFFUKcroB6MNZiRh0o8vqsidPz 6J9CeQgb7Wij9xLbt/yMRVBhgm3G7J1Cn21XEyYOgam2FyKpCjiarEsJZEQPJdjd 5+BuWo/h5q8PayAluIjEqUzV2ObXEWI6hosYH8JQEemFJ9SdWES4OjPENNfnQSuH n6FvFwllciDPiMWB5/fcMtDiFD1P6gFD8OUi2xFCYV//hnOc60CRcuKCr1oCHYYo I9SZdjjn3XtpVO89CDydc+EiDFUVm9m0fdK7hNxmpUfMvT2kR/KwMbJFNDP+/WkN BQN9lpE9zoLuMZmQhJ+GXubF6scDSYjtZYWoGMeL8VZxR2OPvt0= =DRM8 -----END PGP SIGNATURE----- --=-=-=--