Bugtraq mailing list archives

Re: Tired of /tmp? Here's a proposed solution

From: hamors () litterbox org (Sean B. Hamor)
Date: Wed, 28 Aug 1996 15:36:37 -0400


-----BEGIN PGP SIGNED MESSAGE-----

On Wed, 28 Aug 1996, Thomas Koenig wrote:

# >Well, this is a good quick hack. What about removing the CONCEPT of
# >public writable filesystems like /tmp.
#
# Agree 100%.
#
# The best solution would be, IMHO, to give each user his or her
# personal temporary directory, under /tmp/username, mode 700.
# /tmp can stay 1777 for stuff like make files accessible to other
# users.

How about using a method similar to the way SCREEN handles TEMP files?
Obviously allow users to save files in /tmp/ that would blow their quota,
but as far as software created TEMP files, create or use a 700 directory in
/tmp/ similar to this:

hamors (4 13:29) system:/tmp/screens> ls -al
total 6
drwxr-xr-x   3 root     bin           512 Aug 28 05:42 .
drwxrwxrwt   3 bin      bin           512 Aug 28 13:28 ..
drwx------   2 someone  1000          512 Aug 28 05:42 S-someone

I'm not sure how this would be globally implemented, though...

Finger hamors () ishiboo com           /\_/\          mailto:hamors () litterbox org
for PGP public key block.          ( o.o )     http://www.ishiboo.com/~hamors/
alt.litterbox, The Home of TOCA     > ^ <    http://www.litterbox.org/~hamors/
 Hi!  I'm a .signature virus!  Add me to your .signature and join in the fun!

-----BEGIN PGP SIGNATURE-----
Version: 2.6.2

iQEVAwUBMiSfzDU6HlxZIJ+FAQHvGQf/aBlEsbqSiCeZaZcCHXn77OuAdFLGy7hh
5DW8z99Ahr0V1XnKOX5uBBlgCCXkyuqIymIgKjRMSIQNIkmZJ3kcc1RQJhc22C5h
nQjPVnDPwHSpChSVnMTgTgRqWaQCBpXdyuIrhR1uNcMuUg0GZuzOXGMsQqOa21gG
wsr/Ocblgt9Al2g3x05Chk/bz2/PMHyKvZvyWVlMAjDaJhrnV/T91KNB1u4aKpkd
tG+SgLiCH+qu9fCkmy9jWY0p6gKkw7PZZPbAWVYC2spckTlibuX+N2UBBGfK8Q22
iwSkVUkjH1EdWrGHKbKEfm86g45L0fxnNjhjgsIsT3d9dtNNVVX9Lw==
=yLWV
-----END PGP SIGNATURE-----

Current thread:

r00t advisory -- Sunny Day Virus, (continued)
- r00t advisory -- Sunny Day Virus Gregory Hull (Aug 26)
- r00t advisroy -- sol2.5 at(1) vunerability Gregory Hull (Aug 26)
- r00t advisory -- workman vunerability Gregory Hull (Aug 26)
- r00t advisory -- sol2.5 su(1M) vunerability Gregory Hull (Aug 26)
- SGI Security Advisory 19960802-01 - Vulnerability in expreserve SGI Security Coordinator (Aug 26)
- Privileges (was libresolv+ bug) Paul McNabb (Aug 26)
- [BUG] Vulnerability in PINE Sean B. Hamor (Aug 26)
  - Tired of /tmp? Here's a proposed solution Igor Chudov @ home (Aug 26)
    - Re: Tired of /tmp? Here's a proposed solution Guido M. Witmond (Aug 27)
    - Re: Tired of /tmp? Here's a proposed solution Thomas Koenig (Aug 28)
    - Re: Tired of /tmp? Here's a proposed solution Sean B. Hamor (Aug 28)
    - Re: Tired of /tmp? Here's a proposed solution mdr () vodka sse att com (Aug 28)
    - Rlogin vulnerabilty Gabriele Avosani (Aug 28)
    - Re: Tired of /tmp? Here's a proposed solution Matthew J Brown (Aug 28)
    - ftpbounce-0.1.tar.gz Rune Braathen (Aug 27)
  - Re: [BUG] Vulnerability in PINE Rage-303.tr (Aug 27)
    - Re: [BUG] Vulnerability in PINE Linux Mailing Lists (Aug 28)
    - Re: [BUG] Vulnerability in PINE Sean B. Hamor (Aug 28)
    - Re: [BUG] Vulnerability in PINE Jason Haar (Aug 29)
    - HOLE: Unixware 2.03: crontab -e Hannu Laurila (Aug 29)
    - Solaris 2.5* ACLs and /dev/kmem access Vic Abell (Aug 28)

(Thread continues...)