umask in Debian
This is a draft page to keep track of the discussions the default umask value in Debian. umask is a program to set file permissions.
Umask was set to 022 by base-files until 5.4, where it was changed to 002. However, starting from base-files version 5.7, umask is set by pam_umask, which currently defaults again to 022.
The changes in base-files only took effect on freshly installed systems. An umask of 002 gives write permission to the other group members. By default, Debian uses “user private groups” (UPG). Under this scheme, each user has his own private group, that is not to be shared with any other user.
Discussions about its default value
<m0piQuw-0002dGC.email@example.com> (and other threads that month)
Related bugs (incomplete list)
Release Notes: 581729
Securing Debian Manual: 581753
Documentation to update
The Debian Reference (UPG is documented 1.2.4. Control of permissions for newly created files: umask with tips to activate via .bashrc)
Issues with a value of 022
Issues with a value of 002
There is a parallel discussion at Ubuntu: https://wiki.ubuntu.com/MultiUserManagement.