Date: Sat, 21 Apr 2001 00:19:11 -0700 From: "Jason DiCioccio" <geniusj@bluenugget.net> To: <freebsd-security@freebsd.org> Subject: Fw: Linux patches to solve /tmp race problem Message-ID: <000701c0ca33$5d05fbf0$bf960340@skinflutei32jg>
next in thread | raw e-mail | index | archive | help
This looks pretty neat.. kind of strange, but neat none the less :-).. Any comments on whether it should go to the wishlist or straight to the trash? :) (I think it would be a nice sysctl tweak myself) > From: matthew@DATADELIVERANCE.COM > Hi all, > > I have recently developed some patches to the Linux 2.2 kernels which solve > the /tmp race problem without needing to define environment variables - > useful particularly for naive applications and scripts which dont use > TMPDIR and friends. > > The patch creates "dynamic" symlinks, which point to different paths > depending on the user accessing them (for example, including the UID in the > path name). Such a link can be placed instead of /tmp and/or /var/tmp, and > any other similar directories. More usefully, these links can be configured > to automatically create the directory they refer to if it does not exist. > > This means you can create a directory such as /tmp_files, for example, and > have the /tmp link automatically create user directories in it on demand. > Default permissions and ownership can be specified. > > The patches are available from http://www.datadeliverance.com in the Linux > Patches section, along with a full discussion of the issues involved. Your > comments on the scheme are invited. > > Cheers > > -Matthew > > -- > +--------------------------------------------------------------------------+ > | Matthew Donaldson http://www.datadeliverance.com | > | Data Deliverance Pty. Ltd. Email: matthew@datadeliverance.com | > | 30 Musgrave Ave. Phone: +61 8 8265 7976 _ | > | Banksia Park Fax: +61 8 8265 0032 John / \/ | > | South Australia 5091 3:16 \_/\ | > +--------------------------------------------------------------------------+ > > To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?000701c0ca33$5d05fbf0$bf960340>