Re: /tmp exploits

To: Debian developers list <debian-devel@lists.debian.org>
Subject: Re: /tmp exploits
From: Anthony Towns <aj@azure.humbug.org.au>
Date: Mon, 20 Apr 1998 22:44:02 +1000
Message-id: <[🔎] 19980420224402.A2512@azure.humbug.org.au>
Mail-followup-to: Debian developers list <debian-devel@lists.debian.org>
In-reply-to: <[🔎] E0yRFYQ-0000Q7-00@chiark.greenend.org.uk>; from Ian Jackson on Mon, Apr 20, 1998 at 01:20:10PM +0100
References: <[🔎] E0yRFYQ-0000Q7-00@chiark.greenend.org.uk>

On Mon, Apr 20, 1998 at 01:20:10PM +0100, Ian Jackson wrote:
> We should modify our libc so that opening a file in /tmp or /var/tmp -
> determined by simple string comparison of the filename passed to
> open(2) - fails if O_CREAT is specified without O_EXCL.

This should only be files directly under /tmp or /var/tmp, not in 
subdirectories, right? (otherwise using mkdir /tmp/prog.$$ instead of
just >/tmp/prog.$$ doesn't fix the /tmp security holes).

This also would make most uses of tar and similar in /tmp and /var/tmp 
work okay, I believe.

Yes?

Cheers,
aj

-- 
Anthony Towns <aj@humbug.org.au> <http://azure.humbug.org.au/~aj/>
I don't speak for anyone save myself. PGP encrypted mail preferred.

      ``It's not a vision, or a fear. It's just a thought.''

Attachment: pgp8CaItIwqcG.pgp
Description: PGP signature

Reply to:

References:
- /tmp exploits
  - From: Ian Jackson <ijackson@chiark.greenend.org.uk>

Prev by Date: Re: Intent to package: debian-keyring
Next by Date: Re: `Usenix-88-lexic.pdf': Paper refered to in gcc texinfo manual.
Previous by thread: Re: /tmp exploits
Next by thread: Re: /tmp exploits
Index(es):
- Date
- Thread