* lib/cgi/session.rb (CGI::Session::FileStore#update): sets the

permission of the session data file to 0600. * lib/cgi/session/pstore.rb (CGI::Session::Pstore#initialize): ditto. git-svn-id: svn+ssh://ci.ruby-lang.org/ruby/branches/ruby_1_8@6687 b2dd03c8-39d4-4d8f-98ff-823fe69b080e
author: matz <matz@b2dd03c8-39d4-4d8f-98ff-823fe69b080e> 2004-07-23 00:11:34 +0000
committer: matz <matz@b2dd03c8-39d4-4d8f-98ff-823fe69b080e> 2004-07-23 00:11:34 +0000
commit: 23341b7a4c23f2a9f0a69109a505c6a298b947fe (patch)
tree: 90e61147ff5b891f79184aae582e274f47ee02d2 /lib/cgi/session
parent: 1dd51318a85d606ad845ac94b569c5f38e434278 (diff)
1 files changed, 3 insertions, 0 deletions
diff --git a/lib/cgi/session/pstore.rb b/lib/cgi/session/pstore.rb
index 8f4beb978a..f46dd57392 100644
--- a/lib/cgi/session/pstore.rb
+++ b/lib/cgi/session/pstore.rb
@@ -70,6 +70,9 @@ class CGI
 	  @hash = {}
 	end
 	@p = ::PStore.new(path)
+	@p.transaction do |p|
+	  File.chmod(0600, p.path)
+	end
       end
 
       # Restore session state from the session's PStore file.
author	matz <matz@b2dd03c8-39d4-4d8f-98ff-823fe69b080e>	2004-07-23 00:11:34 +0000
committer	matz <matz@b2dd03c8-39d4-4d8f-98ff-823fe69b080e>	2004-07-23 00:11:34 +0000
commit	23341b7a4c23f2a9f0a69109a505c6a298b947fe (patch)
tree	90e61147ff5b891f79184aae582e274f47ee02d2 /lib/cgi/session
parent	1dd51318a85d606ad845ac94b569c5f38e434278 (diff)