Re: /run vs. /lib/run
On Thu, Dec 22, 2005 at 05:18:43PM +1100, Russell Coker wrote:
> Putting system directories under /tmp is a really bad idea, it opens
> possibilities of race condition attacks by unprivileged users against system
> processes. Generally for almost everything we should be looking to reduce
> usage of /tmp rather than increase it.
There are no user processes while scripts in /etc/rcS.d are running (not
even crontabs, since cron itself has not been started yet). And after
rc.S has finished, there is no justification to use /run. I do not see
the problem with using /tmp for /run.
Moreover, I still mean to mount a temporary tmpfs over /tmp, so unless
you explicitely do a "chmod a+w /tmp", normal user processes will not
even be able to write to /tmp until the real /tmp is mounted (or if /tmp
is on /, until the tmpfs is unmounted).
Gabor
--
---------------------------------------------------------
MTA SZTAKI Computer and Automation Research Institute
Hungarian Academy of Sciences,
Laboratory of Parallel and Distributed Systems
Address : H-1132 Budapest Victor Hugo u. 18-22. Hungary
Phone/Fax : +36 1 329-78-64 (secretary)
W3 : http://www.lpds.sztaki.hu
---------------------------------------------------------
Reply to: