Hi, kin...@gmail.com (2010-05-12 at 1230.51 +0200): > GSR wrote, On 12/05/2010 02:23: > > That is a distro workaround to fix a Blender vulnerability (classical > > symlink attack). > Yes maybe (I'm no security expert) ... but do you mean Blender should > not adopt this workaround on unix-like system? This is what both the > proposal and the debian package suggest on this platform (I haven't any > suggestions about OSX and Windows).
Unix has things like mkstemp for this. That was a quick workaround, not a right solution. > As I read your previous emails, you are not in favor with temporary > files located in $HOME directory because of networked user directory > setups. I think those setups are usually managed by some sysadmin ( or > crasy geek user :D ) and therefore Blender should be deployed and > configured by them with environment variables or system-wide config files. Normal users will have to clean up their home. Normal installs do that for you with system wide directories (typically on reboots or based in file age) . GSR _______________________________________________ Bf-committers mailing list Bf-committers@blender.org http://lists.blender.org/mailman/listinfo/bf-committers