Some Eclipse Foundation services are deprecated, or will be soon. Please ensure you've read this important communication.

Bug 325810

Summary: default umask set wrong on new build server?
Product: Community Reporter: David Williams <david_williams>
Component: ServersAssignee: Eclipse Webmaster <webmaster>
Status: RESOLVED FIXED QA Contact:
Severity: normal    
Priority: P3    
Version: unspecified   
Target Milestone: ---   
Hardware: PC   
OS: Windows 7   
Whiteboard:

Description David Williams CLA 2010-09-20 22:21:43 EDT 
I think. 

Seems umask is currently set to 

umask 022

on new build server (for "build ids, such as wtpBuild) ... but pretty sure it used to be 

umask 0002

I'm seeing some strange "could not delete" problems. 

I'll try setting explicitly to 0002 in my bashrc ... but, thought'd I'd document what I see, in case it helps others? 

Or in case I'm doing it wrong :)
Comment 1 David Williams CLA 2010-09-20 22:29:47 EDT 
and ... probably more important ... I think the setgid needs to be set on the build id home directories (right?)
Comment 2 Denis Roy CLA 2010-09-20 22:54:00 EDT 
I can set it to 0002 but that is more restrictive than 022.  Not likely the cause.  But good catch, though.  It should be set to the more secure 0002.

As for the setgid, it doesn't really matter, since the entire group will not be accessing files inside the user's home directory.
Comment 3 David Williams CLA 2010-09-20 23:54:21 EDT 
ok, must be something else ... and ... in the course of "fixing" my directory file permissions, I think I messed up my .ssh directory and files, and now can't seem to set the permissions correct on those ... I've tried setting .ssh and authorizedkeyss to u=rw (only) ... but didn't see to fix. I can ssh with password, but not with my key (but, could earlier).
Comment 4 David Williams CLA 2010-09-20 23:54:46 EDT 
(In reply to comment #3)
> ok, must be something else ... and ... in the course of "fixing" my directory
> file permissions, I think I messed up my .ssh directory and files, and now
> can't seem to set the permissions correct on those ... I've tried setting .ssh
> and authorizedkeyss to u=rw (only) ... but didn't see to fix. I can ssh with
> password, but not with my key (but, could earlier).

Oh ... I meant to say ... any advice?
Comment 5 David Williams CLA 2010-09-21 00:28:04 EDT 
(In reply to comment #4)
> (In reply to comment #3)
> > ok, must be something else ... and ... in the course of "fixing" my directory
> > file permissions, I think I messed up my .ssh directory and files, and now
> > can't seem to set the permissions correct on those ... I've tried setting .ssh
> > and authorizedkeyss to u=rw (only) ... but didn't see to fix. I can ssh with
> > password, but not with my key (but, could earlier).
> 
> Oh ... I meant to say ... any advice?

I fixed (I guess) by changing my wtpBuild home directory back to g=rx ... ssh doesn't like rws in the home directory (I guess).
Comment 6 David Williams CLA 2010-09-21 07:00:36 EDT 
(In reply to comment #2)
> I can set it to 0002 but that is more restrictive than 022.  
 
Are you sure? (Doesn't that sound funny ... me asking _you_ that? :) 

umask -S 022  ==> u=rwx, g=rx,  o=rx
umask -S 0002 ==> u=rwx, g=rwx, o=rx
(I always have to revert to symbols ... I've mastered hex ... but octal throws me off :) 

I've had a little history with this umask problem in the past, such as bug 299185 and bug 300296 (where 0002) seem'd right answer, but in other places, 022 seemed the right answer (e.g. bug 292629#c35) ... so, obviously, I'm always getting these values confused. But seems to me 0002 cases directories to be created with group write permissions set.
Comment 7 David Williams CLA 2010-10-06 10:26:03 EDT 
I believe the umask issue here is fixed (right?) so closing. That is, default is now 0002 with I think works better in combination with setting guid bit 'on'. 

One of the files I could not delete in the past, is now created by hudsonBuild with enough permissions I can delete from my david_williams group membership in callisto-dev: 

-rw-rw-r-- 1 hudsonBuild callisto-dev 219K 2010-09-30 16:17 artifacts.jar

thanks