Don't these people have better things to do than finding non-bugs in systems they don't understand?
brucee On 5 December 2014 at 13:33, Charles Forsyth <[email protected]> wrote: > > On Wed, Dec 3, 2014 at 11:49 PM, Stéphane Aulery <[email protected]> wrote: > >> discovered that rc >> creates temporary files in an insecure way: >> > > rc was built for a system that made /tmp secure by not sharing it (it's > always private to a user and even sometimes to a set of processes). > That way not every app has to try to help sustain the pretence that a > shared /tmp can really be secured (+s bits, EXCL create, etc..) > Obviously the version for Unix will have to change its generation scheme > to fit in. >
