Why we have World Readable and Writeable permissions on files inside ../netbackup/db/images/ and ../netbackup/db/snapshot/ especially .lck files?
It can be an argument that these are empty zero byte files and removed later but why we need them to be rw-rw-rw whereas rw-rw--- can serve the purpose?
Can we change them to comply with enterprise data security standards and how?
I'd check to see if the umask setting for root is defaulting to rw-rw-rw, and if any of the global profile configuration files have a umask setting in them.
SJ Hollist makes a very good point. Proper umask setting will help in this regard, otherwise you will be constantly clearing world permissions on newly created files.
