oss-sec mailing list archives
Re: Re: Fw: Security risk of vim swap files
From: Michael Orlitzky <michael () orlitzky com>
Date: Wed, 1 Nov 2017 13:52:41 -0400
On 11/01/2017 11:41 AM, Z5T1 wrote:
" Move the swap file location to protect against CVE-2017-1000382 silent !install -d -m 700 ~/.vim/swap/ 2>&1 > /dev/null set directory=~/.vim/swap/ This safely sets the swap file directory to a directory that should not cause any security problems.
This is what I used to do in emacs before I disabled the backups completely. I was wondering if there were any problems with it. If there aren't, it seems like a better default to me, for both emacs and vim. It might be interesting to ask upstream how they'd feel about moving them.
Current thread:
- Re: Fw: Security risk of vim swap files, (continued)
- Re: Fw: Security risk of vim swap files Solar Designer (Nov 01)
- Re: Security risk of vim swap files Ian Zimmerman (Nov 06)
- Re: Security risk of vim swap files Solar Designer (Nov 06)
- Re: Security risk of vim swap files Jakub Wilk (Nov 06)
- Re: Fw: Security risk of vim swap files Jakub Wilk (Nov 01)
- Re: Fw: Security risk of vim swap files Leonid Isaev (Nov 01)
- Re: Fw: Security risk of vim swap files Jan Pokorný (Nov 01)
- Re: Re: Fw: Security risk of vim swap files Michael Orlitzky (Nov 01)
- Re: Re: Fw: Security risk of vim swap files Florent Rougon (Nov 01)
- Re: Re: Fw: Security risk of vim swap files Kurt Seifried (Nov 02)
- Re: Re: Fw: Security risk of vim swap files Jakub Wilk (Nov 03)
- Re: Re: Fw: Security risk of vim swap files Scott Court (Nov 03)
- Re: Re: Fw: Security risk of vim swap files Nick Bowler (Nov 03)
- Re: Fw: Security risk of vim swap files Christian Brabandt (Nov 03)
- Re: Fw: Security risk of vim swap files Christian Brabandt (Nov 03)
- Re: Fw: Security risk of vim swap files Christian Brabandt (Nov 05)
- Re: Fw: Security risk of vim swap files Solar Designer (Nov 05)