[Patch] Permissions checking and warnings
Lefteris Chatzibarbas
lefcha at hol.gr
Wed May 23 01:20:01 CEST 2001
On Tue, May 22, 2001 at 11:30:03AM -0500, Bob Luckin wrote:
> On Tue, May 22, 2001 at 05:00:53AM +0300, Lefteris Chatzibarbas wrote:
> > Ok, this new patch checks permissions of the homedir (700), all secret
> > keyrings (600) and random seed file (600).
>
> If this is the user's homedir you are checking, then I would say that 700
> may be too restrictive (the problem is that this is really a matter of
> individual taste...) However, if by homedir, you mean ~/.gnupg or its
> equivalent, then I have no problem with that.
By homedir I mean the GNUPGHOME, that is ~/.gnupg or what the user sets
through the above enviromental variable or "--homedir" argument.
> > It also adds a command line option "--no-permissions-check" that skips all
> > the permission checks.
>
> You might consider whether it is worth having additional switches which just
> disable the check for a single test, eg. "--no-seed-permissions-check".
> I'm not sure whether there is a general desire for this or not; I just
> wanted to raise the issue in case you hadn't already thought of it...
I find one permissions related switch sufficient, but that's just what I
consider useful. Anyone about this?
More information about the Gnupg-devel
mailing list