HPE Community
Operating System - HP-UX
1752786 Members
5864 Online
108789 Solutions
New Discussion юеВ

Re: Umask parameter

 
Ankit Kr Gupta
Advisor

тАО07-15-2009 10:20 PM

тАО07-15-2009 10:20 PM

Umask parameter

Dear All,
In my server, i have set umask 022 in /etc/profile. Now when i login to root, it shows umask 022. when i do su - prdadm, it shows me umask 022. but when i directly login to prdadm user, it shows me umask 077. I also set umask in .profile but no luck.
plz let me know, where i have to set umask, so that it remain 022 only for prdadm also.

Ankit
0 Kudos
Reply
5 REPLIES 5
Basheer_2
Trusted Contributor

тАО07-15-2009 10:39 PM

тАО07-15-2009 10:39 PM

Re: Umask parameter

Hello Ankit,

grep umask ~prdadm/.profile

check if that .profile is calling other scripts like database start or application start.

do a grep on those scripts also.
0 Kudos
Reply
Suraj K Sankari
Honored Contributor

тАО07-15-2009 11:02 PM

тАО07-15-2009 11:02 PM

Re: Umask parameter

Hi Ankit,

Check your .profile again see there is any script is running or not.

Suraj
0 Kudos
Reply
Ganesan R
Honored Contributor

тАО07-16-2009 01:37 AM

тАО07-16-2009 01:37 AM

Re: Umask parameter

Hi Ankit,

Normally umask value will be sourced from /etc/profile unless user's profile will have it's own umask value.

Check the user's profile depends on his shell.
Best wishes,

Ganesh.
0 Kudos
Reply
Bill Hassell
Honored Contributor

тАО07-16-2009 03:39 AM

тАО07-16-2009 03:39 AM

Re: Umask parameter

Using su - prdadm will be the same as a normal login -- unless you are using something strange like Xwindows rather than ssh or telnet. Verify that .profile is actually being run during your login with some debug statement like:

echo "starting .profile, umask=$(umask)"
...
echo "finished .profile, umask=$(umask)"


Bill Hassell, sysadmin
0 Kudos
Reply
Matti_Kurkela
Honored Contributor

тАО07-17-2009 02:09 AM

тАО07-17-2009 02:09 AM

Re: Umask parameter

What's the shell of the prdadm user?
(i.e. what does "grep ^prdadm: /etc/passwd | cut -d : -f 7" report?)

If prdadm's shell is /usr/bin/csh, /usr/bin/tcsh or some other non-Bourne shell, it won't execute /etc/profile or ~/.profile - it runs its own login scripts instead. For csh and tcsh, the standard csh-style login scripts are /etc/csh.cshrc, /etc/csh.login and ~/.cshrc.

If prdadm's shell is e.g. csh and there is no umask command in csh-style login scripts at all, the session might inherit the umask from whatever is the parent process.

When you do "su - prdadm", the parent process is your session, which already has umask 022.

When you login directly to prdadm, the parent process is the network login service: sshd/telnetd/whatever. These are security-critical services, so they are usually hard-coded to set a very strict umask, like 077, unless configured otherwise. If necessary, the strict umask can then be relaxed in /etc/profile, /etc/csh.cshrc or equivalent.

MK
MK
0 Kudos
Reply
The opinions expressed above are the personal opinions of the authors, not of Hewlett Packard Enterprise. By using this site, you accept the Terms of Use and Rules of Participation.