Bugtraq mailing list archives
Re: Tired of /tmp? Here's a proposed solution
From: guido () dataweb nl (Guido M. Witmond)
Date: Tue, 27 Aug 1996 10:48:21 +0200
Once Igor Chudov @ home wrote:
Are you tired of attacks based on files in /tmp? Well, how about the following solution:
[ solutions deleted] Well, this is a good quick hack. What about removing the CONCEPT of public writable filesystems like /tmp. One of the reasons for the /tmp filesystem is to provide users with some extra diskspace that's for temporary use and does not limit users to their respective quotas. Nowadays with ever larger and cheaper disks it is acceptable to let every user create a ~/tmp directory as a private scrapyard. This prevents any /tmp attacks and the use of the quota-system gives enough flexibility to enlarge or reduce the area, even more than the fixed size of /tmp. Regards, Guido Witmond.
Current thread:
- Re: Vulnerability in the Xt library Warner Losh (Aug 25)
- Re: Vulnerability in the Xt library Casper Dik (Aug 26)
- r00t advisory -- Sunny Day Virus Gregory Hull (Aug 26)
- r00t advisroy -- sol2.5 at(1) vunerability Gregory Hull (Aug 26)
- r00t advisory -- workman vunerability Gregory Hull (Aug 26)
- r00t advisory -- sol2.5 su(1M) vunerability Gregory Hull (Aug 26)
- SGI Security Advisory 19960802-01 - Vulnerability in expreserve SGI Security Coordinator (Aug 26)
- Privileges (was libresolv+ bug) Paul McNabb (Aug 26)
- [BUG] Vulnerability in PINE Sean B. Hamor (Aug 26)
- Tired of /tmp? Here's a proposed solution Igor Chudov @ home (Aug 26)
- Re: Tired of /tmp? Here's a proposed solution Guido M. Witmond (Aug 27)
- Re: Tired of /tmp? Here's a proposed solution Thomas Koenig (Aug 28)
- Re: Tired of /tmp? Here's a proposed solution Sean B. Hamor (Aug 28)
- Re: Tired of /tmp? Here's a proposed solution mdr () vodka sse att com (Aug 28)
- Rlogin vulnerabilty Gabriele Avosani (Aug 28)
- Tired of /tmp? Here's a proposed solution Igor Chudov @ home (Aug 26)
- Re: Tired of /tmp? Here's a proposed solution Matthew J Brown (Aug 28)
- ftpbounce-0.1.tar.gz Rune Braathen (Aug 27)
- Re: [BUG] Vulnerability in PINE Linux Mailing Lists (Aug 28)
- Re: [BUG] Vulnerability in PINE Sean B. Hamor (Aug 28)
- Re: [BUG] Vulnerability in PINE Jason Haar (Aug 29)