How to Set Umask Default for an User

How to set umask default for an user?

You can make a work around for it by using /etc/profile file.
I added the following lines at end of /etc/profile. It will overwrite the actual umask command by after setting it the value which you require

umask 0002
alias umask='echo umask cannot be changed'
enable -n umask

[root@client1 ~]# umask
umask cannot be changed
[root@client1 ~]# \umask
-bash: umask: command not found
[root@client1 ~]#

Set UMASK value only for non root users

You could just put umask 022 in your root's .profile/.bashrc and have 077 as a default in your /etc/login.defs.

The umask shell builtin makes the umask system call which sets process-inheritable the umask property: a umask call set in one process affects all descendants of that process (unless they themselves make a umask call), so to set a umask for "user", you need to call umask in a process from which all user processes descend (the login shell and/or the shell through which sudo commands are invoked).

How to set system wide umask?

Both Debian and Ubuntu ship with pam_umask. This allows you to configure umask in /etc/login.defs and have them apply system-wide, regardless of how a user logs in.

To enable it, you may need to add a line to /etc/pam.d/common-session reading

session optional pam_umask.so

or it may already be enabled. Then edit /etc/login.defs and change the UMASK line to

UMASK           002

(the default is 022).

Note that users may still override umask in their own ~/.profile or ~/.bashrc or similar, but (at least on new Debian and Ubuntu installations) there shouldn't be any overriding of umask in /etc/profile or /etc/bash.bashrc. (If there are, just remove them.)

Setting a Umask value for a particular directory and not a user

If you want everybody to be able to write into that directory, but that the files remained owned by directory owner, you could do from your Unix/Linux terminal:

chmod 1775 <complete path>/MAIN_OUTPUT

Then from time to time, directory owner can come here and give permissions to everyone, since he still owns the file.

You may find more expertise on http://unix.stackexchange.com though.

How to set umask for www-data user?

I hope this will work, Please try this way

Manually edit /etc/systemd/system/multi-user.target.wants/ php7.0-fpm.service file and add UMask=0002 line inside [Service] section.

Previously, it was like this.

Sample Image

then

Run command systemctl daemon-reload

then

Run command systemctl restart php7.0-fpm.service

Now the service file looks like this:

[Unit]
Description = The PHP FastCGI Process Manager
After = network.target

[Service]
Type = notify
PIDFile = /var/run/php/php7.0-fpm.pid 
ExecStartPre = /usr/lib/php/php7.0-fpm-checkconf
ExecStart = /usr/sbin/php-fpm7.0 --nodaemonize --fpm-config /etc/php/7.0/fpm/php-fpm.conf
ExecReload = /bin/kill -USR2 $MAINPID
; Added to set umask for files created by PHP
UMask = 0002

[Install]
WantedBy = multi-user.target

NB : You can not use systemctl edit php7.0-fpm.service command as edit option was introduced in systemctl version 218 but Debian 8 ships with version 215.

How to set umask for php5-fpm on Debian?

I was able to set the umask for php5-fpm service by editing it's unit.service file as suggested here and here. The complete and working solution for Debian 8 is this:

  1. Manually edit /etc/systemd/system/multi-user.target.wants/php5-fpm.service file and add UMask=0002 line inside [Service] section.
  2. Run command systemctl daemon-reload
  3. Run command systemctl restart php5-fpm.service

Now the service file looks like this:

[Unit]
Description = The PHP FastCGI Process Manager
After = network.target

[Service]
Type = notify
PIDFile = /var/run/php5-fpm.pid
ExecStartPre = /usr/lib/php5/php5-fpm-checkconf
ExecStart = /usr/sbin/php5-fpm --nodaemonize --fpm-config /etc/php5/fpm/php-fpm.conf
ExecReload = /bin/kill -USR2 $MAINPID
; Added to set umask for files created by PHP
UMask = 0002

[Install]
WantedBy = multi-user.target

Note that:

  1. You can not use systemctl edit php5-fpm.service command as edit option was introduced in systemctl version 218 but Debian 8 ships with version 215.
  2. Adding *.conf file as suggested in comments for this answer did not work for me, but maybe I messed up something (comments are welcome for this as editing unit file is not something that I feel comfortable with).

How to set umask in UNIX in a way that default file permission is rwx (777)?

In short, there is no guarantee you can make that. Longer version in this detailed post:
https://unix.stackexchange.com/questions/287278/why-doesnt-umask-change-execute-permissions-on-files

Setting the umask of the Apache user

Apache inherits its umask from its parent process (i.e. the process starting Apache); this should typically be the /etc/init.d/ script. So put a umask command in that script.


Related Topics

Laravel-Mix No Build Notification

Finding Processor Id in Which Process Is Running [Through Command/Interface Similar to Top]

Function Return Values Within Bash If Statements

Producer Consumer Implementation in a Block Device Driver

Remove Strings by a Specific Delimiter

How to Do 'sort -V' in Osx

Why Does The Stack Have to Be Page Aligned

Interpreting Openssl Speed Output for Rsa with Multi Option

Can 'Vim' Open a Large File in Read Only Mode as Fast as 'Less'

Dynamically Pick The User Gui and UId Who's Running Docker at The Host from Entrypoint

Overview/Reference Manual for Open Firmware Device Trees

Bash Exit Script from Inside a Function

Git - How to Remove Branch from Checkout Autocomplete

Difference Between "Cpu/Mem-Loads/Pp" and "Cpu/Mem-Loads/"

Is There a Linker Flag to Force It to Load All Shared Libraries at Start Time

When Is The System Call Set_Tid_Address Used

Linux, Convert Errno to Name

Vala and Policykit


Leave a reply



Submit