[6001] in bugtraq
Re: GCC 2.7.? /tmp files
daemon@ATHENA.MIT.EDU (Perry E. Metzger)
Mon Jan 19 10:35:42 1998
Date: Sun, 18 Jan 1998 21:18:44 -0500
Reply-To: perry@piermont.com
From: "Perry E. Metzger" <perry@PIERMONT.COM>
To: BUGTRAQ@NETSPACE.ORG
In-Reply-To: Your message of "Sun, 18 Jan 1998 16:14:28 MST."
<199801182314.QAA19902@cvs.openbsd.org>
Theo de Raadt writes:
> In OpenBSD we have fixed hundreds of these /tmp races. I do not
> believe there is a simple answer.
I believe there is.
General publically writable /tmp directories are bad. Systems should
move towards using /tmp/${USER}/ directories on a per-user basis, with
these directories being only touchable by the user. These would cut,
in a gordion knot fashion, literally hundreds of exploits that have
shown up in dozens of places.
I believe, btw, that a similar general fix might help out the
spate of /var/mail security problems.
Perry
