diff options
| -rw-r--r-- | src/libmain/shared.cc | 6 |
1 files changed, 6 insertions, 0 deletions
diff --git a/src/libmain/shared.cc b/src/libmain/shared.cc index 7917407bb2bd..a5c45d853b5c 100644 --- a/src/libmain/shared.cc +++ b/src/libmain/shared.cc @@ -91,6 +91,12 @@ static void initAndRun(int argc, char * * argv) if (sigaction(SIGPIPE, &act, &oact)) throw SysError("ignoring SIGPIPE"); + /* There is no privacy in the Nix system ;-) At least not for + now. In particular, store objects should be readable by + everybody. This prevents nasty surprises when using a shared + store (with the setuid() hack). */ + umask(0022); + /* Process the NIX_LOG_TYPE environment variable. */ string lt = getEnv("NIX_LOG_TYPE"); if (lt != "") setLogType(lt); |