Package: login Version: 1:4.1.5.1-1 Severity: important The 'su -' command, unlike login, doesn't set umask. This behavior disagrees with the man page, which says:
The optional argument - may be used to provide an environment similar to what the user would expect had the user logged in directly. Operating with an unexpected umask value is dangerous, particularly so if running as root. Please change su - to set umask to the same value that login does. -- System Information: Debian Release: jessie/sid APT prefers testing APT policy: (500, 'testing'), (400, 'unstable'), (300, 'experimental') Architecture: amd64 (x86_64) Kernel: Linux 3.8-2-amd64 (SMP w/2 CPU cores) Locale: LANG=C.UTF-8, LC_CTYPE=C.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/dash Versions of packages login depends on: ii libc6 2.17-3 ii libpam-modules 1.1.3-9 ii libpam-runtime 1.1.3-9 ii libpam0g 1.1.3-9 login recommends no packages. login suggests no packages. -- no debconf information -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org