Re: OT: TMPDIR
Re: OT: TMPDIR
- Subject: Re: OT: TMPDIR
- From: "Jordan K. Hubbard" <email@hidden>
- Date: Thu, 15 Nov 2007 22:43:34 -0800
I'm not sure if any of the discussion occurred in the external mailing
lists, but I can tell you that the decisions which led to this
revolved around security. There were a number of attacks which used
prior knowledge of another processes' temporary directory location to
race it to the creation of temporary files. I think the benefits of
"randomizing" it and putting it under the control of launchd far
outweigh any legitimate uses of it (and processes which need to share
files across user instances ought to create specialized subdirectories
of /tmp for this purpose anyway).
- Jordan
On Nov 15, 2007, at 5:57 PM, Jack Repenning wrote:
On Nov 15, 2007, at 5:46 PM, Ben Byer wrote:
It's using Special launchd Sauce to securely create these
directories. I don't yet know of any formal documentation, but you
might take a peek at its implementation: http://www.opensource.apple.com/darwinsource/10.5/system_cmds-431/dirhelper.tproj/
Is there a record of the discussion that led to this change
somewhere? I'm having worried thoughts about systems that use
$TMPDIR for file sharing among processes running as different
users ....
<><
Jack Repenning
_______________________________________________
Do not post admin requests to the list. They will be ignored.
X11-users mailing list (email@hidden)
This email sent to email@hidden
_______________________________________________
Do not post admin requests to the list. They will be ignored.
X11-users mailing list (email@hidden)
This email sent to email@hidden