Hi,
On Fri, Apr 16, 2010 at 10:21:50PM +0200, David Sommerseth wrote:
> In a Debian bug report [1] there were worries that the --client-connect
> script hook was prune to a "symlink" attack. Even though this can
> be recognised if --tmp-dir is set to a world writable directory, it is not
> consid
From: David Sommerseth
In a Debian bug report [1] there were worries that the --client-connect
script hook was prune to a "symlink" attack. Even though this can
be recognised if --tmp-dir is set to a world writable directory, it is not
considered standard practice to do so.
This patch-set repla
