mirror of
https://gitlab.freedesktop.org/pulseaudio/pulseaudio.git
synced 2025-11-09 13:29:59 -05:00
1a66715320
It was reported that PulseAudio weakens the umask to 022 if it's initially set to 077. That's not as big problem as it might seem, but it's still a problem. The umask affects the permissions of the state files, and those aren't readable by other users anyway in the per-user mode, because PulseAudio puts them in directories that aren't accessible to other users. In the system mode the state files will be readable by everyone, though, even by those users that don't otherwise have access to PulseAudio. The state files are slightly privacy-sensitive, because they contain e.g. history of applications that have used PulseAudio. I can't think of any use cases where access to the state files by other users would be necessary, either in the per-user mode or in the system mode, so let's use umask 077. This doesn't prevent access to any sockets in the system mode, because all directories that PulseAudio creates in the system mode will have permissions 755 regardless of the umask, and the sockets themselves always have permissions 777. BugLink: https://bugs.freedesktop.org/show_bug.cgi?id=102060 |
||
|---|---|---|
| .. | ||
| systemd/user | ||
| .gitignore | ||
| caps.c | ||
| caps.h | ||
| cmdline.c | ||
| cmdline.h | ||
| cpulimit.c | ||
| cpulimit.h | ||
| daemon-conf.c | ||
| daemon-conf.h | ||
| daemon.conf.in | ||
| default.pa.in | ||
| dumpmodules.c | ||
| dumpmodules.h | ||
| esdcompat.in | ||
| ltdl-bind-now.c | ||
| ltdl-bind-now.h | ||
| main.c | ||
| Makefile | ||
| pulseaudio-system.conf | ||
| pulseaudio.desktop.in | ||
| server-lookup.c | ||
| server-lookup.h | ||
| start-pulseaudio-x11.in | ||
| system.pa.in | ||