On Wed, 13 Sep 2000, Arnd Hanses wrote:
> On Wed, 13 Sep 2000 14:43:43 +0000 (GMT), Carlos A M dos Santos wrote:
>
> And security/privacy means always security/privacy to be enforced by
> default, unless somebody who knows what he is doing decides against
> them. (Most commercial Linux distributions entirely would disagree; but
> they are biased, because they must survive in M$ biotopes! ;-< And this
> is not at all meant pejoratively!)
>
well I think if someone is writing sensitive information in a multi-user
environment, they'd better know about this anyway. It would be up to the
system administrator to set a global umask or whatever otherwise ...
> So the default as well as the fallback should be some ~/.lyx/tmp/
> directory. This would leave behind tmp files in case of a LyX crash,
> which is only a good thing, isn't it?
>
well, I have a feeling this would bring many complaints from university
students with small quotas and large reports ;) yes, it would be
configurable, but I think /tmp is a reasonable default (I agree that
this world-writable directory thing was always a bad idea though)
Or does LyX default to $TMPDIR ?
> Arnd
>
> PS:
> We should never underestimate the enormous amount of creativity
> unleashed by pure maliciousness...
Yep, I read BUGTRAQ ;)
john
--
"There's an old story about the person who wished his
computer were as easy to use as his telephone. That
wish has now come true, since I no longer know how to
use my telephone."
- Bjarne Stroustrap
