This is true. If CVS access were granted via pserver, the attacker would have to find a way to crash CVS (thereby leaving the /tmp directory). Noel [EMAIL PROTECTED] on 04/25/2000 06:20:38 PM To: [EMAIL PROTECTED] cc: [EMAIL PROTECTED] (bcc: Noel L Yap) Subject: Re: Security issue seen in BUGTRAQ security list. Joao C. Ferreira writes: > > I'd like to know if there's anything already done to solve this problem in > the latest versions, or if it still persits. And if there's anything being > done to correct it. The current development version tries a bit harder to generate a unique name for the temporary directory, but it's still pretty predictable. Someone with a shell account on a machine usually has lots of ways to deny services to other users of the machine (forking process as quickly as possible, using up all the space or inodes on /tmp, etc.), so I'm not sure it's really worth doing anything about. -Larry Jones I think we need to change the rules. -- Calvin
