Date: Wed, 26 Jun 2002 01:50:15 +0100 From: Tony Finch <dot@dotat.at> To: Mikhail Teterin <mi+mx@aldan.algebra.com> Cc: cvs-all@FreeBSD.org, cvs-committers@FreeBSD.org Subject: Re: cvs commit: src/etc/mtree BSD.var.dist Message-ID: <20020626015015.H3377@chiark.greenend.org.uk> In-Reply-To: <200206251949.46889.mi%2Bmx@aldan.algebra.com>; from mi%2Bmx@aldan.algebra.com on Tue, Jun 25, 2002 at 07:49:46PM -0400 References: <200206251949.46889.mi%2Bmx@aldan.algebra.com>
next in thread | previous in thread | raw e-mail | index | archive | help
On Tue, Jun 25, 2002 at 07:49:46PM -0400, Mikhail Teterin wrote: > On Tuesday 25 June 2002 03:25 am, Sheldon Hearn wrote: > = On (2002/06/25 00:28), Tony Finch wrote: > = > > = > I should probably take this up with the openssh people rather than > = > here, but wouldn't it be easier if sshd created its own empty directory > = > on demand at each invocation, rather than relying on careful system > = > development and administration? > = > = That sounds much better to me. > > As long as it is under /var/run, right? I don't think it matters much where it is: I was thinking of using mkdtemp() and removing the directory after chdiring and chrooting into it, to be really sure that some other bugger doesn't come along and fool about with it. This still requires the special userid (but then all servers need their own userid -- nobody should be used by nobody) but doesn't need mtree pollution. Other suggestions are welcome. Tony. -- f.a.n.finch <dot@dotat.at> http://dotat.at/ FISHER GERMAN BIGHT: WESTERLY, BACKING SOUTHWESTERLY FOR A TIME, 4 OR 5, OCCASIONALLY 6. RAIN OR SHOWERS. MODERATE OR GOOD. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe cvs-all" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20020626015015.H3377>