Re: /var/run and scripts

To: Marco d'Itri <md@Linux.IT>, Debian Devel <debian-devel@lists.debian.org>
Subject: Re: /var/run and scripts
From: Russell Coker <russell@coker.com.au>
Date: Thu, 4 Sep 2003 14:24:50 +1000
Message-id: <[🔎] 200309041424.50277.russell@coker.com.au>
Reply-to: russell@coker.com.au
In-reply-to: <[🔎] 20030903194501.GA7932@wonderland.linux.it>
References: <[🔎] 200309022334.02659.russell@coker.com.au> <[🔎] 200309031520.49420.russell@coker.com.au> <[🔎] 20030903194501.GA7932@wonderland.linux.it>

On Thu, 4 Sep 2003 05:45, Marco d'Itri wrote:
> On Sep 03, Russell Coker <russell@coker.com.au> wrote:
>  >Given that /var/tmp is bad for security, what would you suggest?
>
> It's bad only if your program is broken. And safe creation of temp files
> is not hard...

Given the history of people getting it wrong I find it difficult to agree with 
you.

> So I think that the correct location is /tmp or /var/tmp if the script
> is temporary or /var/lib/something if it's not.

The general opinion seems to be that /var/run is OK, and there is not enough 
weight of opinion against it to ask people to change existing code.  So I'll 
have to tolerate /var/run.

-- 
http://www.coker.com.au/selinux/   My NSA Security Enhanced Linux packages
http://www.coker.com.au/bonnie++/  Bonnie++ hard drive benchmark
http://www.coker.com.au/postal/    Postal SMTP/POP benchmark
http://www.coker.com.au/~russell/  My home page

Reply to:

References:
- /var/run and scripts
  - From: Russell Coker <russell@coker.com.au>
- Re: /var/run and scripts
  - From: Russell Coker <russell@coker.com.au>
- Re: /var/run and scripts
  - From: Marco d'Itri <md@Linux.IT>

Prev by Date: Bug#208620: ITP: freeradius -- a high-performance and highly configurable RADIUS server
Next by Date: Re: Bug in cron postinst
Previous by thread: Re: /var/run and scripts
Next by thread: Re: /var/run and scripts
Index(es):
- Date
- Thread