Issue with group of decrypted file
Adrian 'Dagurashibanipal' von Bidder
avbidder@fortytwo.ch
Mon Sep 2 14:04:02 2002
--=-OV9ejRCfc9MZnMeysKM0
Content-Type: text/plain
Content-Transfer-Encoding: quoted-printable
On Fri, 2002-08-30 at 05:12, David McDonald wrote:
> Hi all,
>=20
> Is anyone else seeing this?
>=20
> When I decrypt a file, the decrypted file's group is always "root". I am =
not
> running gpg as root, but as a normal user (though gpg is setuid root to
> allow it to use secure memory).
Blind guess: gnupg is installed setuid *and* setgid root, but it does
only drop the uid privilege, not the group privilege (since it does only
*use* the ui privilege).
$ ls -l `which gpg`
-rwsr-xr-x 1 root root 596296 May 11 16:13 /usr/bin/gpg
I'd bet for you it shows '-rwsr-sr-x'. The obvious fix would be
$ chmod g-s `which gpg`
(and as this is posted to -devel: would it make sense to try to drop the
group privilege to stop this installation error having any impact?)
cheers
-- vbi
--=20
secure email with gpg http://fortytwo.ch/gpg
NOTICE: keyserver.kjsl.com is known to carry a valid copy of my key
--=-OV9ejRCfc9MZnMeysKM0
Content-Type: application/pgp-signature; name=signature.asc
Content-Description: This is a digitally signed message part
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.0.7 (GNU/Linux)
iHQEABECADQFAj1zU+MtGmh0dHA6Ly9mb3J0eXR3by5jaC9ncGcvcG9saWN5L2Vt
YWlsLjIwMDIwODIyAAoJECqqZti935l6jagAmwbEmSYfGiGh1X8qd38Boa/RI6ev
AKCZpRBpTrnN61AnA2yp5AgyhOqTrw==
=UXqv
-----END PGP SIGNATURE-----
Signature policy: http://fortytwo.ch/gpg/policy/email.20020822
--=-OV9ejRCfc9MZnMeysKM0--