>>> A while ago, the use of libpam-tmpdir was suggested in order to mitigate >>> some of these attacks. It would be nice to see it in use by default, some >>> day. >> >>> Obviously there will always be some programs that don't look at the >>> TMPDIR environment variable and directly use /tmp. >> write file to /tmp/filename == write file to $TMPDIR/filename >> both cases are security holes if TMPDIR=/tmp :) > The idea behind libpam-tmpdir is that it creates a subdirectory of /tmp > that is only accessible by that user, and then sets TMPDIR and other > variables to that. Hence, it doesn't matter nearly as much if you > create a non-random filename, because nobody but you can access it. Yes, but scripts must use $TMPDIR instead '/tmp' or mktemp/tempfile utils :) -- ... mpd playing: U.D.O. - Midnight Mover . ''`. Dmitry E. Oboukhov : :’ : unera@debian.org `. `~’ GPGKey: 1024D / F8E26537 2006-11-21 `- 1B23 D4F8 8EC0 D902 0555 E438 AB8C 00CF F8E2 6537
Attachment:
signature.asc
Description: Digital signature