[3289] in bugtraq
Re: Tired of /tmp? Here's a proposed solution
daemon@ATHENA.MIT.EDU (Guido M. Witmond)
Tue Aug 27 11:48:07 1996
Date: Tue, 27 Aug 1996 10:48:21 +0200
Reply-To: "Guido M. Witmond" <guido@dataweb.nl>
From: "Guido M. Witmond" <guido@dataweb.nl>
X-To: ichudov@algebra.com
To: Multiple recipients of list BUGTRAQ <BUGTRAQ@netspace.org>
In-Reply-To: <199608270218.VAA06742@manifold.algebra.com> from "Igor Chudov @
home" at Aug 26, 96 09:18:26 pm
Once Igor Chudov @ home wrote:
> Are you tired of attacks based on files in /tmp?
>
> Well, how about the following solution:
>
[ solutions deleted]
Well, this is a good quick hack. What about removing the CONCEPT of
public writable filesystems like /tmp.
One of the reasons for the /tmp filesystem is to provide users with some
extra diskspace that's for temporary use and does not limit users to their
respective quotas.
Nowadays with ever larger and cheaper disks it is acceptable to let every
user create a ~/tmp directory as a private scrapyard. This prevents any
/tmp attacks and the use of the quota-system gives enough flexibility
to enlarge or reduce the area, even more than the fixed size of /tmp.
Regards, Guido Witmond.
