Attached is a man page for pam_tmpdir(8).
.TH PAM_TMPDIR 8
.SH NAME
\fBpam_tmpdir\fP \- PAM module for creating a secure directory for users' 
temporary files
.SH SYNOPSIS
\fBpam_tmpdir.so\fP
.SH DESCRIPTION
This module can be plugged into the \fBsession\fP stack of a given service to
provide secure, per-user directories for temporary files.
.SH OPTIONS
The directory in which the users' temporary directories are created can be set
using an entry in /etc/security/tmpdir.conf:

.EX
tmpdir=/path/to/tmpdir
.EE

The default is /tmp/user.
.SH MODULE TYPES PROVIDED
Although this is intended to be used with the \fBsession\fP module type, it also
provides \fBaccount\fP, \fBauth\fP, and \fBpassword\fP module types.
.SH RETURN VALUES
.IP PAM_SUCCESS
The temporary directory was successfully created.
.IP PAM_ABORT
An error occurred when attempting to create the temporary directory.
.IP PAM_SERVICE_ERR
An internal error occurred.
.SH EXAMPLES
.PP
To allow users to login even if pam_tmpdir fails to create a safe tmpdir:

.IP
.EX
session    optional     pam_tmpdir.so
.EE

.PP
To deny login if an error occurs while setting up the safe tmpdir:

.IP
.EX
session    required     pam_tmpdir.so
.EE

.PP
\fINOTE\fP: This could allow for a DoS attack if a malicious user creates 
/tmp/user
before pam_tmpdir does.

.SH SEE ALSO
\fIpam-tmpdir-helper\fP\|(8)
.SH AUTHOR
Tollef Fog Heen <[email protected]>
.SH COPYRIGHT
Copyright \(co 2002-2012 Tollef Fog Heen <[email protected]>.
.BR

This is free software; see the source for copying conditions.

There is NO warranty; not even for MERCHANTABILITY or FITNESS FOR A PARTICULAR 
PURPOSE.

Reply via email to