On Tue, 2013-07-30 at 00:50 +0200, Lennart Poettering wrote: > So, why don't you revert to using /tmp then?
The problem with /tmp is that if you want predictable filenames for the storage, you open yourself to a denial-of-service attack where another user can create a file with the same name. It's really not that hard to create /run/kerberos and manage its contents by deleting them when they expire. And it doesn't tie us into anything permanent either; by the time the ccache moves for the *second* time, everyone is already removing the hard-coded assumptions from their code and just asking libkrb5 "where is it today?". -- David Woodhouse Open Source Technology Centre david.woodho...@intel.com Intel Corporation
smime.p7s
Description: S/MIME cryptographic signature
-- devel mailing list devel@lists.fedoraproject.org https://admin.fedoraproject.org/mailman/listinfo/devel Fedora Code of Conduct: http://fedoraproject.org/code-of-conduct
