From fbb268c12ab12fa282f11eabdedf7fdee3d24b4a Mon Sep 17 00:00:00 2001
From: Diogo Monica <diogo@docker.com>
Date: Thu, 13 Aug 2015 19:16:00 -0700
Subject: [PATCH] Fixing race condition on private key backup how-to

Signed-off-by: Diogo Monica <diogo@docker.com>
---
 docs/security/trust/trust_key_mng.md | 3 +--
 1 file changed, 1 insertion(+), 2 deletions(-)

diff --git a/docs/security/trust/trust_key_mng.md b/docs/security/trust/trust_key_mng.md
index a9bd02b75e..fbd7085e37 100644
--- a/docs/security/trust/trust_key_mng.md
+++ b/docs/security/trust/trust_key_mng.md
@@ -45,8 +45,7 @@ The Docker client stores the keys in the `~/.docker/trust/private` directory.
 Before backing them up, you should `tar` them into an archive:
 
 ```bash
-$ tar -zcvf private_keys_backup.tar.gz ~/.docker/trust/private
-$ chmod 600 private_keys_backup.tar.gz
+$ umask 077; tar -zcvf private_keys_backup.tar.gz ~/.docker/trust/private; umask 022
 ```
 
 ## Lost keys