Re: checking for /tmp security holes

To: debian-devel@lists.debian.org
Subject: Re: checking for /tmp security holes
From: Wichert Akkerman <wakkerma@cs.leidenuniv.nl>
Date: Wed, 11 Nov 1998 02:04:30 +0100
Message-id: <[🔎] 19981111020430.A1582@cs.leidenuniv.nl>
Mail-followup-to: debian-devel@lists.debian.org
In-reply-to: <[🔎] 19981110153946.G10305@kitenet.net>; from Joey Hess on Tue, Nov 10, 1998 at 03:39:47PM -0800
References: <[🔎] Pine.just.say.no.cSid5j7yq6@sfere.greenend.org.uk> <[🔎] 19981110153946.G10305@kitenet.net>

Previously Joey Hess wrote:
> It just occurred to me that we could probalby use libtricks or strace to
> find all access to /tmp during a debian install, and then grep out the safe
> ones. Would be an interesting project.

strace -f -e file dpkg -i xxx.deb 2| grep ^open

Only problem is that strace fails when dpkg installs a large package.
I think the problem is that dpkg forks a _lot_ of processes, but I
haven't been able to find out exactly why it fails..

Wichert.

Attachment: pgpe7itoOzqQn.pgp
Description: PGP signature

Reply to:

Follow-Ups:
- Re: checking for /tmp security holes
  - From: joostje@debian.org

References:
- checking for /tmp security holes
  - From: Richard Kettlewell <rjk@greenend.org.uk>
- Re: checking for /tmp security holes
  - From: Joey Hess <joey@kitenet.net>

Prev by Date: Re: Release-critical Bug Report for November 7
Next by Date: Re: bo mirrors ?
Previous by thread: Re: checking for /tmp security holes
Next by thread: Re: checking for /tmp security holes
Index(es):
- Date
- Thread