On 12/3/20 8:40 PM, Dale wrote:
Howdy,
I've mentioned I follow -dev to see what is coming around the corner.
There is a thread on there about switching tmpfiles packages for
security reasons. I currently have sys-apps/opentmpfiles installed. I
guess that is the default for openrc. Someone mentioned
systemd-tmpfiles as a alternative that doesn't have the same security
problems.
There's a full explanation here:
http://michael.orlitzky.com/cves/cve-2017-18925.xhtml
I'm a champion systemd hater, but you should switch to systemd-tmpfiles.
There's no downside other than the name.
