On 07/24/2014 22:55, Yavor Doganov wrote:
On Wed, Mar 12, 2014 at 03:02:38PM +0100, Ansgar Burchardt wrote:
gdomap chroots to /tmp as another level of paranoia. However if
you are paranoid, you really want to chroot to an empty,
non-writable directory, not to a world-writable one containing
Ansgar Burchardt wrote:
On 07/24/2014 22:55, Yavor Doganov wrote:
Do you have a suggestion how to handle this issue?
I would just create an empty directory in /run (optionally via
tmpfiles.d)
Hmm, this doesn't look like a portable solution.
or ship one in
On 07/25/2014 11:05, Yavor Doganov wrote:
Ansgar Burchardt wrote:
On 07/24/2014 22:55, Yavor Doganov wrote:
Do you have a suggestion how to handle this issue?
I would just create an empty directory in /run (optionally via
tmpfiles.d)
Hmm, this doesn't look like a portable solution.
or
On Wed, Mar 12, 2014 at 03:02:38PM +0100, Ansgar Burchardt wrote:
Package: gnustep-base-runtime
Tags: security
gdomap chroots to /tmp as another level of paranoia. However if
you are paranoid, you really want to chroot to an empty,
non-writable directory, not to a world-writable one
Package: gnustep-base-runtime
Version: 1.22.1-4.3
Severity: important
Tags: security
gdomap chroots to /tmp as another level of paranoia. However if you
are paranoid, you really want to chroot to an empty, non-writable
directory, not to a world-writable one containing random files.
Ansgar
--
5 matches
Mail list logo