John Reiser wrote:
> It seems to me that the "private /tmp" feature of recent Fedora systems
> has removed a large percentage of the potential vulnerabilities here.
> If you cannot see anybody else's /tmp then you cannot create
> vulnerabilities in /tmp for them, and they cannot create vulnerabilities
> in /tmp for you.
Unfortunately, private /tmp is only enabled by default in Fedora for select
services and not for users, mainly because some programs (ab)use /tmp to do
sockets to communicate between users.
Kevin Kofler
--
devel mailing list
devel@lists.fedoraproject.org
https://admin.fedoraproject.org/mailman/listinfo/devel
