From 405e81d29df8b32eb34a608297227ef0df04d30a Mon Sep 17 00:00:00 2001
From: Alexey Verkhovsky <averkhov@thoughtworks.com>
Date: Sun, 23 Jan 2005 20:26:39 +0000
Subject: [PATCH] set uploaded files to read-only access mode

---
 app/models/file_yard.rb | 2 ++
 1 file changed, 2 insertions(+)

diff --git a/app/models/file_yard.rb b/app/models/file_yard.rb
index 0c327b88..566218da 100644
--- a/app/models/file_yard.rb
+++ b/app/models/file_yard.rb
@@ -17,6 +17,8 @@ class FileYard
     else
       File.open(file_path(name), 'wb') { |f| f.write(io.read) }
     end
+    # just in case, estrict read access and prohibit write access to the uploaded file
+    FileUtils.chmod(0440, file_path(name))
   end
 
   def files