On 02/18/2010 01:33 PM, Michael Madigan wrote: > I wonder if setting the temp directory to a hidden directory would also make > it more secure. >
I don't think so. Files that begin with a period, (eg . ), are not displayed when browsing or using a [ ls -l /] command, for example, unless the -a, (eg all), attribute is specified, or unless you specify that the Linux browser show hidden files, so hidding a file in Linux provides very limited security. For temporary files containing sensitive data, I would recommend writing the data to a more secure directory and giving only the owner of the file the permissions needed. For example, if the owner, (eg the creator), of the file only needed to be able to read and write the file, then assigned the file the following permissions: chmod 600 /somedirectory/testfile Regards, LelandJ > --- On Thu, 2/18/10, Leland F. Jackson, CPA<lela...@mail.smvfp.com> wrote: > > >> From: Leland F. Jackson, CPA<lela...@mail.smvfp.com> >> Subject: Re: [NF] How secure are temp files under Windows XP (and higher) >> and Linux? >> To: "ProFox Email List"<profox@leafe.com> >> Date: Thursday, February 18, 2010, 2:33 PM >> In Fedora 11 the permissions assigned >> on the /tmp directory are: >> >> drwxrwxr-x >> >> or >> >> owner =rwx >> group = rwx >> other = r-x >> >> If I create a file in /tmp directory as user leland, (eg >> touch >> test-tmp), I get the following: >> >> -rw-rw-r-- leland leland >> >> or >> >> owner = -rw leland >> group = -rw leland >> other = -r- >> >> I hope this helps. >> >> Regards, >> >> LelandJ >> >> >> >> Whoops, the directory permissions on my Fedora 11 directory /tmp is rwxrwxrwxt >> >> >> >> On 02/18/2010 01:09 PM, Malcolm Greene wrote: >> >>> I'm doing a code review of an application that >>> >> occassionally (and >> >>> temporarily) writes blocks of secure data to temp >>> >> files. >> >>> While the code in question is Python 2.6 (using >>> tempfile.TemporaryFile( delete=True )), I believe the >>> >> question is >> >>> general enough to be asked in this forum.. >>> Are there OS specific nuances I should be concerned >>> >> about when >> >>> using temp files on Windows (XP or higher) or Linux? >>> >>> Thanks, >>> Malcolm >>> >>> >>> --- StripMime Report -- processed MIME parts --- >>> multipart/alternative >>> text/plain (text body -- kept) [excessive quoting removed by server] _______________________________________________ Post Messages to: ProFox@leafe.com Subscription Maintenance: http://leafe.com/mailman/listinfo/profox OT-free version of this list: http://leafe.com/mailman/listinfo/profoxtech Searchable Archive: http://leafe.com/archives/search/profox This message: http://leafe.com/archives/byMID/profox/4b7d9c3b.7030...@mail.smvfp.com ** All postings, unless explicitly stated otherwise, are the opinions of the author, and do not constitute legal or medical advice. This statement is added to the messages for those lawyers who are too stupid to see the obvious.
