Re: Permissions of files created by notmuch

Subject: Re: Permissions of files created by notmuch

Date: Sun, 18 Mar 2018 15:17:39 +0000

To: Georg Faerber, notmuch@notmuchmail.org

Cc:

From: Daniel Kahn Gillmor

On Sun 2018-03-18 04:30:06 +0100, Georg Faerber wrote:

> I'm using notmuch 0.26-1+b2 out of Debian unstable.
> The files created inside .notmuch/xapian by notmuch are group and world
> readable.  Is this on purpose? This seems quite suboptimal, especially
> if one is using the recently introduced cleartext indexing feature..

is your mailbox itself world-readable?  What is your umask?

in general, i'd expect notmuch to follow umask like any other unix
tool.  if we wanted it to be more restrictive, maybe that's a separate
use case.

See also discussion at id:20180209041058.4037-1-dkg@fifthhorseman.net
around whether "notmuch insert" and other tools should produce
world-readable files by default.

curious to hear what you think is the right choice here.

   --dkg
signature.asc (application/pgp-signature)
_______________________________________________
notmuch mailing list
notmuch@notmuchmail.org
https://notmuchmail.org/mailman/listinfo/notmuch

Thread: