PAM module to set the file mode creation mask
' pam_umask.so 'u pam_umask.so [debug] [silent] [usergroups] [umask= mask ]
pam_umask is a PAM module to set the file mode creation mask of the current environment . The umask affects the default permissions assigned to newly created files .
The PAM module tries to get the umask value from the following places in the following order:
2.3 umask= entry in the user (Aqs GECOS field '-04' '+03' .sp -1
2.3 umask= argument '-04' '+03' .sp -1
2.3 UMASK entry from /etc/login .defs '-04' '+03' .sp -1
2.3 UMASK= entry from /etc/default/login
The GECOS field is split on comma (Aq, (Aq characters . The module also in addition to the umask= entry recognizes pri= entry, which sets the nice priority value for the session, and ulimit= entry, which sets the maximum size of files the processes in the session can create .
debug Print debug information .
silent Don (Aqt print informative messages .
usergroups If the user is not root and the username is the same as primary group name, the umask group bits are set to be the same as owner bits (examples: 022 -> 002, 077 -> 007) .
umask= mask Sets the calling process (Aqs file mode creation mask (umask) to mask & 0777 . The value is interpreted as Octal .
Only the session type is provided .
PAM_SUCCESS The new umask was set successfully .
PAM_SERVICE_ERR No username was given .
PAM_USER_UNKNOWN User not known .
Add the following line to /etc/pam .d/login to set the user specific umask at login:.RS 4
session optional pam_umask .so umask=0022
pam.conf(5), pam.d(5), pam(8)
pam_umask was written by Thorsten Kukuk <kukuk@thkukuk .de> .