Date: Thu, 23 May 1996 14:45:22 -0700 (PDT) From: Jim Dennis <jimd@mistery.mcafee.com> To: freebsd-questions@freebsd.org (FreeBSD Questions) Subject: /tmp ownership+perms; / and /usr mounted ro? Message-ID: <199605232145.OAA13174@mistery.mcafee.com>
next in thread | raw e-mail | index | archive | help
I knew I'd have some other questions: I've moved /tmp to /export/tmp (it actually isn't NFS exported that's just the name) and set the sticky bit on it (then I created a symlink back to /tmp). Recently there was a message on bugtraq regarding a garbage collection script (in the RedHat Linux -- but applicable to others) that highlighted problems with using a /etc/crontab job and find to sweep files out of /tmp. Most of the issues could be resolved by simply preventing find from following symlinks (there's a switch for that). However, I was wondering what would be the implications of configuring /tmp (/export/tmp in this case) to be owned by nobody or owned by a special dummy account -- and then running the garbage collector under that account (eliminating the problems inherent in running them as root). It seems that the owner of the directory should be able to rm the files even if the sticky bit is set and the files are owned by someone else. (incidentally root's files, and my own user tmp files always set TEMP to be ~/tmp -- I don't share my tmp space with anyone and ~/tmp is mode 700; that seems to avoid the elm tempfile class of bugs)
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?199605232145.OAA13174>