On Fri 2008-05-16 13:46:46 -0400, martin f krafft wrote: > Why not rely on a tempfile() method to create a tempfile with > restrictive permissions, which is then moved into place?
This would make it impossible to send the output to stdout, though.
I'd hate to lose that capability.
Of course, fiddling with the umask doesn't affect the stdout case
either, but if someone is redirecting stdout to a file, they needed to
have set the umask properly outside the certtool invocation anyway.
--dkg
pgpZRBWMfXLlu.pgp
Description: PGP signature
