Date: Sat, 10 Mar 2001 23:47:16 -0500 From: Will Andrews <will@physics.purdue.edu> To: Dan Langille <dan@langille.org> Cc: security@FreeBSD.ORG Subject: Re: temp files for security/logcheck Message-ID: <20010310234716.S45561@ohm.physics.purdue.edu> In-Reply-To: <200103110435.f2B4ZHw04676@ns1.unixathome.org>; from dan@langille.org on Sun, Mar 11, 2001 at 05:35:16PM %2B1300 References: <200103110435.f2B4ZHw04676@ns1.unixathome.org>
next in thread | previous in thread | raw e-mail | index | archive | help
[-- Attachment #1 --] On Sun, Mar 11, 2001 at 05:35:16PM +1300, Dan Langille wrote: > The port security/logcheck creates /usr/local/etc/tmp[1] and chmod's it > to 700. It does that because the temp files it creates and uses need to > be relativly secure. It writes out several files that could cause problems > if a user made links, etc. > > Does anyone see any issues which we need to deal with? e.g. the > security of this directory, the name of this directory... If logcheck needs secure tempfiles, it can chmod them. Or if it needs a dir to itself, it can have a /usr/local/var/tmp/logcheck/ directory. -- wca [-- Attachment #2 --] -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.0.3 (FreeBSD) Comment: For info see http://www.gnupg.org iD8DBQE6qwNUF47idPgWcsURAj7KAJsErCuY4CvKu1Xp2V/0W9YmzHfT8ACfY8c6 ZTasLdWuj5dF4KdMBetFsDE= =1GeG -----END PGP SIGNATURE-----
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20010310234716.S45561>