Re: /tmp exploits

To: Debian developers list <debian-devel@lists.debian.org>
Subject: Re: /tmp exploits
From: Ian Jackson <ian@chiark.greenend.org.uk>
Date: Mon, 20 Apr 1998 21:43:03 +0100
Message-id: <[🔎] E0yRNP5-000069-00@chiark.greenend.org.uk>
In-reply-to: <[🔎] 87zphg9v69.fsf@tiamat.datasync.com>
References: <[🔎] E0yRFYQ-0000Q7-00@chiark.greenend.org.uk> <[🔎] 87zphg9v69.fsf@tiamat.datasync.com>

Manoj Srivastava writes ("Re: /tmp exploits"):
...
> 	I think I would want echo blah > /tmp/junk nto to start
>  failing on my just because there is a file called junk already
>  in there. Modifying libc is too deep rooted a change; and modifes the
>  semantics of /tmp in an unacceptable fashion. I think the goals are
>  laudable -- but something like this should not be unleased even on
>  unstable. 

I think noone, even humans, should type `echo blah > /tmp/junk'.  Make
a directory named after your userid, or use your home directory, or
something.

Insecure use of /tmp is still insecure when done by humans - even more
so, perhaps, because I might well be able to predict your favourite
filename well in advance much more easily than I could predict the PID
of a particular program invoked at some unknown time in the future.

Also, several people who use /tmp in this way may well clash with each
other, causing untold mayhem.


--
To UNSUBSCRIBE, email to debian-devel-request@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmaster@lists.debian.org

Reply to:

Follow-Ups:
- Re: /tmp exploits
  - From: Manoj Srivastava <srivasta@datasync.com>

References:
- /tmp exploits
  - From: Ian Jackson <ijackson@chiark.greenend.org.uk>
- Re: /tmp exploits
  - From: Manoj Srivastava <srivasta@datasync.com>

Prev by Date: binary-CD exceeds 650 MB -- any solution?
Next by Date: Re: binary-CD exceeds 650 MB -- any solution?
Previous by thread: Re: /tmp exploits
Next by thread: Re: /tmp exploits
Index(es):
- Date
- Thread