Home dirs are created 755 by default and umask is 0022 making files in homes readable by other users (users group). While not being a real vulnerability, making home dirs 700 would be a sensible security default because it fits well both to shared networked computers (such as servers) and newbies who still have to learn well unix permissions and may erroneously consider their home a private place. Home permissions are certainly a matter of taste but keeping them strict and leaving admin in charge of customization is afaic security-wiser than the other way. Reproducible: Always Steps to Reproduce:
*** This bug has been marked as a duplicate of 69783 ***