Permissions of files created by notmuch

Daniel Kahn Gillmor dkg at fifthhorseman.net
Sun Mar 18 08:17:39 PDT 2018


On Sun 2018-03-18 04:30:06 +0100, Georg Faerber wrote:

> I'm using notmuch 0.26-1+b2 out of Debian unstable.
> The files created inside .notmuch/xapian by notmuch are group and world
> readable.  Is this on purpose? This seems quite suboptimal, especially
> if one is using the recently introduced cleartext indexing feature..

is your mailbox itself world-readable?  What is your umask?

in general, i'd expect notmuch to follow umask like any other unix
tool.  if we wanted it to be more restrictive, maybe that's a separate
use case.

See also discussion at id:20180209041058.4037-1-dkg at fifthhorseman.net
around whether "notmuch insert" and other tools should produce
world-readable files by default.

curious to hear what you think is the right choice here.

   --dkg
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 227 bytes
Desc: not available
URL: <http://notmuchmail.org/pipermail/notmuch/attachments/20180318/01ed536a/attachment.sig>


More information about the notmuch mailing list