Re: FHS compliance and UNIX sockets

To: debian-devel@lists.debian.org
Subject: Re: FHS compliance and UNIX sockets
From: Matt Zimmerman <mdz@debian.org>
Date: Mon, 29 Jan 2001 15:01:17 -0500
Message-id: <[🔎] 20010129150114.G2501@alcor.net>
Mail-followup-to: debian-devel@lists.debian.org
In-reply-to: <[🔎] 84wvbeokmk.fsf@snoopy.apana.org.au>; from bam@debian.org on Mon, Jan 29, 2001 at 06:58:11PM +1100
References: <[🔎] 200101290627.f0T6RoF27758@linda.lfix.co.uk> <[🔎] 20010129024934.E2501@alcor.net> <[🔎] 84wvbeokmk.fsf@snoopy.apana.org.au>

On Mon, Jan 29, 2001 at 06:58:11PM +1100, Brian May wrote:

> >>>>> "Matt" == Matt Zimmerman <mdz@debian.org> writes:
> 
>     Matt> /dev/log and /tmp/.X11-unix, at least, must at least be
>     Matt> replaced by symlinks, as statically linked software will
>     Matt> look for them there, including many chrooted daemon
>     Matt> programs.
> 
> Do these programs (that access /tmp/.X11-unix) really accept
> symlinks?
> 
> (if they do then that is a potential security bug - the sym-link could
> point anywhere)

How is that different from the current situation?  Anyone could create
/tmp/.X11-unix, since /tmp is world-writable.  In the case of /dev/log, only
root could create a symlink there.

-- 
 - mdz

Reply to:

References:
- FHS compliance and UNIX sockets
  - From: "Oliver Elphick" <olly@lfix.co.uk>
- Re: FHS compliance and UNIX sockets
  - From: Matt Zimmerman <mdz@debian.org>
- Re: FHS compliance and UNIX sockets
  - From: Brian May <bam@debian.org>

Prev by Date: Re: HOWTO announce ITP
Next by Date: nail might be interesting wrt mailx
Previous by thread: Re: FHS compliance and UNIX sockets
Next by thread: new partimage packages
Index(es):
- Date
- Thread