From mboxrd@z Thu Jan 1 00:00:00 1970 Return-Path: Received: from lists.gentoo.org (pigeon.gentoo.org [208.92.234.80]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by finch.gentoo.org (Postfix) with ESMTPS id 15EEA1382C5 for ; Sun, 6 Dec 2020 21:44:37 +0000 (UTC) Received: from pigeon.gentoo.org (localhost [127.0.0.1]) by pigeon.gentoo.org (Postfix) with SMTP id F41B7E0A9A; Sun, 6 Dec 2020 21:44:32 +0000 (UTC) Received: from smtp.gentoo.org (smtp.gentoo.org [140.211.166.183]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by pigeon.gentoo.org (Postfix) with ESMTPS id 95286E0A8D for ; Sun, 6 Dec 2020 21:44:32 +0000 (UTC) Subject: Re: [gentoo-user] Re: Switching default tmpfiles and faster internet coming my way. To: gentoo-user@lists.gentoo.org References: <88428daf-071f-d032-0e87-017528cd7a18@gentoo.org> From: Michael Orlitzky Message-ID: Date: Sun, 6 Dec 2020 16:44:20 -0500 User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:78.0) Gecko/20100101 Thunderbird/78.5.0 Precedence: bulk List-Post: List-Help: List-Unsubscribe: List-Subscribe: List-Id: Gentoo Linux mail X-BeenThere: gentoo-user@lists.gentoo.org Reply-to: gentoo-user@lists.gentoo.org X-Auto-Response-Suppress: DR, RN, NRN, OOF, AutoReply MIME-Version: 1.0 In-Reply-To: Content-Type: text/plain; charset=utf-8; format=flowed Content-Language: en-US Content-Transfer-Encoding: 7bit X-Archives-Salt: 16502a99-333b-4965-ba86-bed925297ac4 X-Archives-Hash: 743e0e9e220eb9bf7ff7f003e1d9cdd7 On 12/6/20 11:57 AM, Martin Vaeth wrote: > Michael Orlitzky wrote: >> >> Why are you focusing on /tmp and /var/tmp? > > Because only world-writable directories are the ones which > can be exploited unless the tmpfiles.conf author does > something malevolent or extremely stupid. > This is completely untrue, but I'm not about to get into an argument over something that you can easily check yourself. Caveat emptor.