The change a couple days ago to create files initially without group and

[rsync/rsync.git] / rsync.h

diff --git a/rsync.h b/rsync.h
index 92ba256..3e040d4 100644 (file)
--- a/rsync.h
+++ b/rsync.h
@@ -465,6 +465,10 @@ extern int errno;
 #ifndef ACCESSPERMS
 #define ACCESSPERMS 0777
 #endif
+/* Initial mask on permissions given to temporary files.  Mask off setuid
+     bits and group access because of potential race-condition security
+     holes, and mask other access because mode 707 is bizarre */
+#define INITACCESSPERMS 0700
 
 /* handler for null strings in printf format */
 #define NS(s) ((s)?(s):"<NULL>")