Re: Bug#1023778: TMPDIR behaviour in maintainer scripts [was: Re: Bug#1023778: mysql-server-8.0: fails to restart on upgrade with libpam-tmpdir]
- To: Robie Basak <robie.basak@ubuntu.com>
- Cc: 1023778@bugs.debian.org, Simon McVittie <smcv@debian.org>, Otto Kekäläinen <otto@kekalainen.net>, "brian m. carlson" <sandals@crustytoothpaste.net>, debian-devel@lists.debian.org, 1022994@bugs.debian.org, Daniel Black <daniel@mariadb.org>, Sunil Mohan Adapa <sunil@medhas.org>
- Subject: Re: Bug#1023778: TMPDIR behaviour in maintainer scripts [was: Re: Bug#1023778: mysql-server-8.0: fails to restart on upgrade with libpam-tmpdir]
- From: Marco d'Itri <md@linux.it>
- Date: Sun, 13 Nov 2022 17:46:00 +0100
- Message-id: <[🔎] Y3EfSH+30zXOYiUL@bongo.bofh.it>
- Mail-followup-to: Robie Basak <robie.basak@ubuntu.com>, 1023778@bugs.debian.org, Simon McVittie <smcv@debian.org>, Otto Kekäläinen <otto@kekalainen.net>, "brian m. carlson" <sandals@crustytoothpaste.net>, debian-devel@lists.debian.org, 1022994@bugs.debian.org, Daniel Black <daniel@mariadb.org>, Sunil Mohan Adapa <sunil@medhas.org>
- In-reply-to: <[🔎] 20221113163905.GF28869@mal.justgohome.co.uk>
- References: <[🔎] 20221110072617.GQ28869@mal.justgohome.co.uk> <[🔎] 87leoiwyse.fsf@err.no> <[🔎] CAOU6tABQ26_geaUbknCF+SoXd6ksURVqpn4RSjJUHBjDjf8orQ@mail.gmail.com> <Y2xLylfKj34Fbaou@tapette.crustytoothpaste.net> <[🔎] Y3BGtqJoHTHc4KLY@bongo.bofh.it> <[🔎] 20221113113808.GD28869@mal.justgohome.co.uk> <[🔎] Y3EGJ5YZ9VpIuDpA@momentum.pseudorandom.co.uk> <Y2xLylfKj34Fbaou@tapette.crustytoothpaste.net> <[🔎] Y3EKTZnhS+UlekWY@bongo.bofh.it> <[🔎] 20221113163905.GF28869@mal.justgohome.co.uk>
On Nov 13, Robie Basak <robie.basak@ubuntu.com> wrote:
> This seems inconsistent to me. Where is the expectation that TMPDIR must
> be unset if dropping privileges coming from? Obviously for users of
Where is the expectation that $TMPDIR is writable by any user but the
current one?
I do not believe that it is expected that if a user creates a directory
and points $TMPDIR to it then they also have to make it sticky, so this
has nothing to do with libpam-tmpdir.
--
ciao,
Marco
Attachment:
signature.asc
Description: PGP signature
Reply to: