Re: checking for /tmp security holes

To: wakkerma@cs.leidenuniv.nl (Wichert Akkerman)
Cc: debian-devel@lists.debian.org
Subject: Re: checking for /tmp security holes
From: joostje@debian.org
Date: Wed, 11 Nov 1998 10:28:21 +0100 (MET)
Message-id: <[🔎] 199811110928.KAA27070@netsrv.att.cmg.nl>
Reply-to: joostje@debian.org
In-reply-to: <[🔎] 19981111020430.A1582@cs.leidenuniv.nl> from "Wichert Akkerman" at Nov 11, 98 02:04:30 am

> 
> 
> --XsQoSWH+UP9D9v3l
> Content-Type: text/plain; charset=us-ascii
> 
> Previously Joey Hess wrote:
> > It just occurred to me that we could probalby use libtricks or strace to
> > find all access to /tmp during a debian install, and then grep out the safe
> > ones. Would be an interesting project.
> 
> strace -f -e file dpkg -i xxx.deb 2| grep ^open

Yes, that should also work. But then libtricks (or rahter
the trick-chktmp script) will only report the suspicious open's to
/tmp, not every open. Of cource one can write a regular expression
for grep so that the above line also only reports the suspicous
open's to /tmp, but I doubt strace will be very fast :)

joost

Reply to:

Follow-Ups:
- Re: checking for /tmp security holes
  - From: Wichert Akkerman <wakkerma@cs.leidenuniv.nl>

References:
- Re: checking for /tmp security holes
  - From: Wichert Akkerman <wakkerma@cs.leidenuniv.nl>

Prev by Date: Re: checking for /tmp security holes
Next by Date: Firewall on kernel ...
Previous by thread: Re: checking for /tmp security holes
Next by thread: Re: checking for /tmp security holes
Index(es):
- Date
- Thread