From 3f56e6ebac0cdb6c257cfd65f13ae9b354d68dae Mon Sep 17 00:00:00 2001
From: drh <drh@noemail.net>
Date: Thu, 15 Mar 2007 01:16:47 +0000
Subject: Enhanced temp-file security under unix.  There are no known attacks
 against prior versions - this check-in is just an added precaution. (CVS
 3687)

FossilOrigin-Name: 5af61402f65bddc4040a20470f267c9404cba631
---
 src/os_unix.c | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

(limited to 'src/os_unix.c')

diff --git a/src/os_unix.c b/src/os_unix.c
index 67b7425af..5508240fe 100644
--- a/src/os_unix.c
+++ b/src/os_unix.c
@@ -864,7 +864,7 @@ int sqlite3UnixOpenExclusive(const char *zFilename, OsFile **pId, int delFlag){
   assert( 0==*pId );
   h = open(zFilename,
                 O_RDWR|O_CREAT|O_EXCL|O_NOFOLLOW|O_LARGEFILE|O_BINARY,
-                SQLITE_DEFAULT_FILE_PERMISSIONS);
+                delFlag ? 0600 : SQLITE_DEFAULT_FILE_PERMISSIONS);
   if( h<0 ){
     return SQLITE_CANTOPEN;
   }
-- 
cgit v1.2.3