Greg Wooledge (12024-07-15): > Neither am I. But more to the point, it appears that the default umask > literally *cannot* be changed in any kind of universal way. There are, > like, half a dozen different places you'd have to apply a change in > order to cover just the *most common* workflows. Who knows how many > more corner cases would be missed?
This is very true. And alas, it is not limited to umask: environment variables, limits, etc. The solution I chose for myself is to put it in .zshenv, zsh being my shell, and making sure all my other startup scripts are #!/bin/zsh. But I am sure modern display managers manage to start modern desktop environments that manage to run user applications without ever invoking the login shell. Yay for modernity. Anyway, this whole discussion is moot, because: - Experienced users can find a solution for the specific system they use. - Even though the default umask is permissive, the permissions on ~ can be restrictive, and for lusers it is functionally equivalent, and the default permissions on ~ is asked by debconf. Regards, -- Nicolas George
