X-Git-Url: https://iankelling.org/git/?a=blobdiff_plain;f=filesystem%2Fetc%2Fprofile.d%2Fenvironment.sh;h=4c5794f4fc918219cc18131e9e5e22f3f0f14f0e;hb=b5152768e90016afe8ff2d55cc9f38d08396b0fc;hp=17b3b06208c82b19a1a1a94c61e92658a33add9d;hpb=1178f7e7106ada9eba91184c04533feb28f695f5;p=distro-setup

diff --git a/filesystem/etc/profile.d/environment.sh b/filesystem/etc/profile.d/environment.sh
index 17b3b06..4c5794f 100644
--- a/filesystem/etc/profile.d/environment.sh
+++ b/filesystem/etc/profile.d/environment.sh
@@ -55,12 +55,21 @@ if [ -f /etc/fedora-release ]; then
     fi
 fi
 
+# background:
 # ubuntu has 002 for non-system users, debian has 022.  002 makes groups
-# be rw instead of r. One security concern is where some unixes put
-# every user in a same group, so if you copy files there with exact
-# perms, that is probably not what you want. I don't use a system like
-# that. I don't care much either way, but the ubuntu one seems a bit
-# more user friendly.
-if (( EUID >= 1000 )); then
-    umask 002
-fi
+# be rw instead of r.
+#
+# ubuntu is more user friendly when using multiple users. However,
+# it also makes it so if you create a file as a regular user then move
+# it to become a system file, it's got slightly wrong permissions, and
+# sometimes thing break. Also, copying files between ubuntu and debian
+# makes things inconsistent. So stick with 022 umask always.
+#
+# One security concern is where some unixes put every user in a same
+# group, so if you copy files there with exact perms, that is probably
+# not what you want. I don't use a system like that, so I don't
+# care.
+umask 022
+# this is how we could test for non-system user
+
+#if test "$(id -u)" -ge 1000; then : fi