Issue with group of decrypted file

Adrian 'Dagurashibanipal' von Bidder avbidder at
Mon Sep 2 15:04:02 CEST 2002

On Fri, 2002-08-30 at 05:12, David McDonald wrote:
> Hi all,
> Is anyone else seeing this?
> When I decrypt a file, the decrypted file's group is always "root". I am not
> running gpg as root, but as a normal user (though gpg is setuid root to
> allow it to use secure memory).

Blind guess: gnupg is installed setuid *and* setgid root, but it does
only drop the uid privilege, not the group privilege (since it does only
*use* the ui privilege).

$ ls -l `which gpg`
-rwsr-xr-x    1 root     root       596296 May 11 16:13 /usr/bin/gpg

I'd bet for you it shows '-rwsr-sr-x'. The obvious fix would be
$ chmod g-s `which gpg`

(and as this is posted to -devel: would it make sense to try to drop the
group privilege to stop this installation error having any impact?)

-- vbi

secure email with gpg              

NOTICE: is known to carry a valid copy of my key
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 334 bytes
Desc: This is a digitally signed message part
Url : /pipermail/attachments/20020902/0bccaea7/attachment.bin

More information about the Gnupg-devel mailing list