[Gllug] /tmp query was sudo query

Ian Northeast ian at house-from-hell.demon.co.uk
Tue Feb 5 22:00:05 UTC 2002


Iain Conochie wrote:
> 
> >
> >
> > hmm, tricky, that wasnt quite what i wanted todo.  the file in question
> > is created in ~/tmp/ using mkstemp.  so there's no real way of knowing
> > what the file name is going to be.  and i dont really want to make tmp
> > 777.
> 
> Erm - maybe I am being insanly stupid, but why not???? Should not _every_
> user have r-w-x perms on temp?? Obviosly setyting the stick bit as not to
> allow a user to delete another users file in /tmp

No, you are not being insanely stupid, or if you are so is everyone who
produces Unix systems (Sun, IBM etc.). All Unix(-like) systems I have
ever seen have 777 on /tmp by default, even the super paranoid OpenBSD.
And most - everything I have seen recently - have the sticky bit. ITIR
that some systems 10 years or so ago omitted this, but this is stupid.
It was around that time that some systems permitted setuid shell scripts
too.

Regards, Ian

-- 
Gllug mailing list  -  Gllug at linux.co.uk
http://list.ftech.net/mailman/listinfo/gllug




More information about the GLLUG mailing list