Why is UPG halfway implemented?

[John Moser]

On Fri, Mar 5, 2010 at 2:30 PM, Brian Vaughan <bgvaughan at gmail.com> wrote:
> I posted this query some time ago on the Ubuntu forums, and got no
> response. In IRC, it was suggested to me that this list might be a more
> suitable place to ask, so I'm repeating it here:
....
>
> As explained, the traditional Unix practice is for regular users to be
> assigned a default group such as "users", and the default umask for
> regular users is 022. But on Red Hat, the UPG convention is to have each
> user assigned a unique default group, with the same name as the user,
> and the default umask is 002. This means that by default, files created

I'm going to interject that this is a worthless conversation as long
as the umask isn't 077.  Yay for reading /home/$TARGET/ and looking
for confidential e-mails, documents, etc... at least angry wives can
check their husbands' $HOME folder for naughty pictures of the girls
he's cheating with, I guess that's a plus.

This is coming from someone who thinks we should implement pam-tmpdir
by default (I've run with it for several releases) so everyones'
temporary files don't go into a world-readable directory.  It's fun
when you see /tmp/sexy-kitty-girl-naughty-naughty.mpeg but it can't be
read because it's -rw------- and owned by user 'dad', as opposed to
being in /tmp/user/1001/ which is drwx------ ....

So yeah, i tend to be the "Lock it down until it's unlocked" person.
There should be a /home/_Shared/ folder owned by root, drwtrwxrwx,
linked to as "Shared Documents."