Re: Separate tmp-dir for every user?

To: debian-isp@lists.debian.org
Subject: Re: Separate tmp-dir for every user?
From: Marcin Owsiany <porridge@debian.org>
Date: Mon, 1 Dec 2008 16:28:00 +0000
Message-id: <[🔎] 20081201162800.GE30613@beczulka>
Mail-followup-to: debian-isp@lists.debian.org
In-reply-to: <[🔎] 49340FAC.1040503@vandervlis.nl>
References: <[🔎] 4933F0CD.3060704@vandervlis.nl> <[🔎] 20081201144522.GC30613@beczulka> <[🔎] 49340FAC.1040503@vandervlis.nl>

On Mon, Dec 01, 2008 at 05:24:12PM +0100, Paul van der Vlis wrote:
> Marcin Owsiany schreef:
> > On Mon, Dec 01, 2008 at 03:12:29PM +0100, Paul van der Vlis wrote:
> >> Hello,
> >>
> >> I am installing a new shared hosting server, and I would like to know
> >> how important it is to have a seperate tmp-dir for every user.
> >>
> >> What are the disadvantages/risks of a shared tmp-dir?
> > 
> > Can you really elliminate the need for a shared /tmp? I guess you would
> > be really lucky not to come across an application which has /tmp
> > hardcoded and does not consult $T{E,}MPDIR
> > 
> > As for the risks, the biggest is probably the possibility of having a
> > symlink attack vulnerability in one of your applications. 
> 
> But this is then a bug in the application, isn't it?

Yes, but it's like bashisms. You learn about them the hard way :-)

-- 
Marcin Owsiany <porridge@debian.org>             http://marcin.owsiany.pl/
GnuPG: 1024D/60F41216  FE67 DA2D 0ACA FC5E 3F75  D6F6 3A0D 8AA0 60F4 1216

Reply to:

References:
- Separate tmp-dir for every user?
  - From: Paul van der Vlis <paul@vandervlis.nl>
- Re: Separate tmp-dir for every user?
  - From: Marcin Owsiany <porridge@debian.org>
- Re: Separate tmp-dir for every user?
  - From: Paul van der Vlis <paul@vandervlis.nl>

Prev by Date: Re: Separate tmp-dir for every user?
Next by Date: RE: Separate tmp-dir for every user?
Previous by thread: Re: Separate tmp-dir for every user?
Next by thread: Hosted collaboration suites
Index(es):
- Date
- Thread