oddjob_mkhomedir umask.

Hi,

I am trying to set up a SFTP server with a chroot jail.
User authentication on the system is integrated with Active Directory (configured with Realmd).

I am using the below homedir configuration on my sssd.conf:

override_homedir = /home/%u/sftp

The above works fine, /home//sftp is created by oddjob_mkhomedir, owned by and with permissions extracted from the UMASK config on /etc/login.defs.

drwxr-xr-x 2 test.user77 domain users 4096 Jul 26 11:04 /home/test.user77/sftp/

The problem I am facing is that /home also gets created on the fly, owned by root but with 711 permissions. I don't know where oddjob gets those permissions from, as the root umask is 022.

drwx--x--x 3 root root 4096 Jul 26 11:04 /home/test.user77

That's messing with my SFTP chroot jail as it's expecting that dir to be 755 instead of 711.

Is there any way of telling sssd/oddjob_mkhomedir to use a different umask for those "intermediate" directories?