Re: /var/run and scripts
On Thu, 4 Sep 2003 05:45, Marco d'Itri wrote:
> On Sep 03, Russell Coker <russell@coker.com.au> wrote:
> >Given that /var/tmp is bad for security, what would you suggest?
>
> It's bad only if your program is broken. And safe creation of temp files
> is not hard...
Given the history of people getting it wrong I find it difficult to agree with
you.
> So I think that the correct location is /tmp or /var/tmp if the script
> is temporary or /var/lib/something if it's not.
The general opinion seems to be that /var/run is OK, and there is not enough
weight of opinion against it to ask people to change existing code. So I'll
have to tolerate /var/run.
--
http://www.coker.com.au/selinux/ My NSA Security Enhanced Linux packages
http://www.coker.com.au/bonnie++/ Bonnie++ hard drive benchmark
http://www.coker.com.au/postal/ Postal SMTP/POP benchmark
http://www.coker.com.au/~russell/ My home page
Reply to: