Date: Tue, 26 Feb 2002 16:15:44 -0800 (PST) From: Jason Stone <jason@shalott.net> To: <security@FreeBSD.ORG> Subject: Re: Third /tmp location ? (and maybe a fourth too) Message-ID: <20020226160701.V52647-100000@walter> In-Reply-To: <20020226152847.L25859-100000@roble.com>
next in thread | previous in thread | raw e-mail | index | archive | help
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 > > Unfortunately, as demonstrated in another reply, > > the optimal partition scheme (/, /usr, /var) is > > preferred over single partition schemes. > > Preferred by who? Not by the majority of admins I've worked with over > the past couple of decades. [..] Creating a partition for /var is > also rarely necessary All partitions that can be written by users should be mounted "nosuid,nodev" and possibly even "noexec" if you can get away with it. /usr obviously can't be mounted "noexec" and most people can't even mount it "nosuid" - therefore, it is wholly unacceptable from a security standpoint to have a user-writable directory in /usr I think that the ideal solution is for pkg_add to honour TMPDIR and, if it can't get enough space in /tmp, die with a message like, "Not enough space in /tmp, consider setting TMPDIR." pkg_add should never create directories without my consent, even if it deletes them immediately afterwards (even if their weren't concerns about race conditions), and it should clearly never, ever leave world-writable directories on un-restricted mount points lying around. -Jason ----------------------------------------------------------------------- I worry about my child and the Internet all the time, even though she's too young to have logged on yet. Here's what I worry about. I worry that 10 or 15 years from now, she will come to me and say "Daddy, where were you when they took freedom of the press away from the Internet?" -- Mike Godwin -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.0.6 (FreeBSD) Comment: See https://private.idealab.com/public/jason/jason.gpg iD8DBQE8fCU0swXMWWtptckRAju/AJ4r8UeajrOBS/DPP47PSIzuDQXpUgCbBlbt dXsmpqioR/P0Z1u+DpIBWtE= =gze7 -----END PGP SIGNATURE----- To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20020226160701.V52647-100000>