Re: Bug#179125: maintainer scripts tries to exec script in /tmp
On Mon, 2003-02-03 at 11:48, Henrique de Moraes Holschuh wrote:
> On Mon, 03 Feb 2003, Oliver Elphick wrote:
> > > You shouldn't rely on being able to execute scripts in /tmp.
>
> You shouldn't rely on your system working with noexec set on /tmp. A LOT of
> software wants to run stuff in there. Not too many Debian packages do this,
> but...
I still can't see how setting noexec on /tmp helps security. You would
still have to type an explicit path to execute any program, so it's no
different from any other arbitrary path. Is it intended to protect
against people who put . in their path?
> > A temporary script needs to be somewhere, and /tmp is guaranteed to
> > exist and to be available for temporary files. I don't see how making
>
> Don't hardwire to /tmp. Use $TMPDIR if it is defined...
OK. I can go with that. Does the submitter agree? Jamie?
--
Oliver Elphick <olly@lfix.co.uk>
LFIX Limited
Reply to: