Re: Make /tmp/ a tmpfs and cleanup /var/tmp/ on a timer by default [was: Re: systemd: tmpfiles.d not cleaning /var/tmp by default]

To: Simon Richter <sjr@debian.org>
Cc: debian-devel@lists.debian.org
Subject: Re: Make /tmp/ a tmpfs and cleanup /var/tmp/ on a timer by default [was: Re: systemd: tmpfiles.d not cleaning /var/tmp by default]
From: Luca Boccassi <luca.boccassi@gmail.com>
Date: Mon, 6 May 2024 16:47:08 +0100
Message-id: <[🔎] CAMw=ZnSHD8naEm3y_Xq7OJdnyjdOC0C6sfyzPa5fUCuGvmdXfw@mail.gmail.com>
In-reply-to: <[🔎] 53491680-da7e-42a5-83bd-6300c11aa1ee@debian.org>
References: <159620836885.528.10433000193944261598.reportbug@debiansosreport> <4c902aab-6a1b-266a-5279-7327514684fe@debian.org> <[🔎] ebee234c6f72eb7dfe55809821c038491bfea542.camel@debian.org> <[🔎] abb5af73-7b68-4880-b0fc-622112bf4403@debian.org> <[🔎] 638906b4-3ab1-4409-9214-8b163e1d86d4@debian.org> <[🔎] 67269ca0-3d65-455d-8667-cd8b0de67a68@debian.org> <[🔎] 53491680-da7e-42a5-83bd-6300c11aa1ee@debian.org>

On Mon, 6 May 2024 at 16:42, Simon Richter <sjr@debian.org> wrote:
>
> Hi,
>
> On 5/6/24 19:57, Michael Biebl wrote:
>
> > Afaik, /var/tmp has never been cleaned up on /boot.
> > So I'm not sure what you mean with "no longer"?
>
> Oof, you're right, it was /tmp, /var/run, /var/lock:
>
>          [ "$VERBOSE" != no ] && echo -n "Cleaning"
>          [ -d /tmp ] && cleantmp
>          [ -d /var/run ] && cleanrun
>          [ -d /var/lock ] && cleanlock
>          [ "$VERBOSE" != no ] && echo "."
>
> Would it make sense to make it a bug for a package to use /var/tmp (on
> my system, I can see files from audacity and reportbug there) and
> declare that this directory is for the use of the sysadmin only?

In general it should be the opposite, it's fine for packages to use
/tmp or /var/tmp (using appropriate measures such as random file/dir
names to avoid clashes and attacks), as long as it's really for
temporary stuff, as in, if they are lost it's not a problem and they
are recreated. If you are storing your precious irreplaceable state on
/tmp or /var/tmp, then you are doing it wrong (TM).
In general it's users who should be careful and know what they are
doing, especially due to the world-writable nature of both
directories.

Reply to:

References:
- Make /tmp/ a tmpfs and cleanup /var/tmp/ on a timer by default [was: Re: systemd: tmpfiles.d not cleaning /var/tmp by default]
  - From: Luca Boccassi <bluca@debian.org>
- Re: Make /tmp/ a tmpfs and cleanup /var/tmp/ on a timer by default [was: Re: systemd: tmpfiles.d not cleaning /var/tmp by default]
  - From: Michael Biebl <biebl@debian.org>
- Re: Make /tmp/ a tmpfs and cleanup /var/tmp/ on a timer by default [was: Re: systemd: tmpfiles.d not cleaning /var/tmp by default]
  - From: Simon Richter <sjr@debian.org>
- Re: Make /tmp/ a tmpfs and cleanup /var/tmp/ on a timer by default [was: Re: systemd: tmpfiles.d not cleaning /var/tmp by default]
  - From: Michael Biebl <biebl@debian.org>
- Re: Make /tmp/ a tmpfs and cleanup /var/tmp/ on a timer by default [was: Re: systemd: tmpfiles.d not cleaning /var/tmp by default]
  - From: Simon Richter <sjr@debian.org>

Prev by Date: Re: Make /tmp/ a tmpfs and cleanup /var/tmp/ on a timer by default [was: Re: systemd: tmpfiles.d not cleaning /var/tmp by default]
Next by Date: Re: Re: Make /tmp/ a tmpfs and cleanup /var/tmp/ on a timer by default [was: Re: systemd: tmpfiles.d not cleaning /var/tmp by default]
Previous by thread: Re: Make /tmp/ a tmpfs and cleanup /var/tmp/ on a timer by default [was: Re: systemd: tmpfiles.d not cleaning /var/tmp by default]
Next by thread: Re: Make /tmp/ a tmpfs and cleanup /var/tmp/ on a timer by default [was: Re: systemd: tmpfiles.d not cleaning /var/tmp by default]
Index(es):
- Date
- Thread