[PATCH] cli/insert: new message file can be world-readable (rely on umask)

Peter Wang novalazy at gmail.com
Mon Feb 5 03:59:20 PST 2018


On Sun,  4 Feb 2018 23:37:03 -0500, Daniel Kahn Gillmor <dkg at fifthhorseman.net> wrote:
> There are legitimate cases (public archives) where a user might
> actually want their archive to be readable to the world.
> 
> "notmuch insert" historically used mode 0600 (unreadable by group or
> other), but that choice doesn't appear to have been specifically
> justified (perhaps an abundance of caution?).

I can't remember any specific reason for 0600 instead of 0644.
Probably just assumed that mail is supposed to be private.

> If the user wants "notmuch insert" to create files that are not
> readable by group or other, they can set their umask more
> restrictively.

By calling notmuch through a wrapper shell script, I suppose.

The mode for --create-folder should be reconsidered as well.

Peter


More information about the notmuch mailing list