+1 😄
> On Dec 4, 2014, at 7:08 PM, Bruce Ellis <bruce.el...@gmail.com> wrote: > > Don't these people have better things to do than finding non-bugs in systems > they don't understand? > > brucee > >> On 5 December 2014 at 13:33, Charles Forsyth <charles.fors...@gmail.com> >> wrote: >> >>> On Wed, Dec 3, 2014 at 11:49 PM, Stéphane Aulery <saul...@free.fr> wrote: >>> discovered that rc >>> creates temporary files in an insecure way: >> >> rc was built for a system that made /tmp secure by not sharing it (it's >> always private to a user and even sometimes to a set of processes). >> That way not every app has to try to help sustain the pretence that a shared >> /tmp can really be secured (+s bits, EXCL create, etc..) >> Obviously the version for Unix will have to change its generation scheme to >> fit in. >
