[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Re: proposal: per-user temporary directories on by default?

* Kevin Kreamer 

| Tollef Fog Heen <tfheen@hardware.no> writes:
| > ATM, TMPDIR is defined using #define in libpam-tmpdir's source.
| > Patches for having that as a run-time configuration are accepted.
| 
| I recently posted to debian-devel a patch to do this (not sure
| whether you saw it or not).

I saw it, thanks

[...]

| [1] My solution as to how to get the path from libpam-tmpdir to
| pam-tmpdir-helper was to pass it on the command line.  But, since
| anyone can run pam-tmpdir-helper, anyone can create any tmpdir they
| like anywhere on the system.  Very bad.

Adding a sanity check that the base directory is owned by root, would
that suffice?

I think I'll have to think about this a little.

-- 
Tollef Fog Heen                                                        ,''`.
UNIX is user friendly, it's just picky about who its friends are      : :' :
                                                                      `. `' 
                                                                        `-
Reply to: