On Wed, 20 Jun 2001, Bill Davidsen wrote:
> > Or do you have a kernel patch which re-routes access to /tmp to a
> > user-defined secure place?
>
> Why would you? If you want great security you don't use /tmp. We
> started talking about a useful script, which you can change to put the
> files in a loop mounted cryptographic filesystem with no permissions at
> all.
For programs that don't.
> > And does your OS follow links by other users in directories which have
> > the sticky bit set?
>
> If someone has invaded the system to the point where they can change
> /tmp to a symbolic link, then you have vastly larger problems than
> allowing access to a CD image.
Re-read what I said.
Walter
--
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]