]] Andrey Bondarenko Hi,
> By default both / and /tmp are world readable. Many programs was not > tested with unreadable $TMP parent. Some of them may have bugs that may > be triggered by pam_tmpfs installation. Find and fix all such bugs will > be very time consuming task. Also pam_tmpdir may be installed by package > dependencies, so user may not even notice change that caused the bug. Given that this is the first time I've heard of such a bug in another package (since I wrote pam-tmpdir back in 2001), I don't think they are particularly common. > Changing permissions of /tmp/user in pam_tmpdir package, to 755 will not > reduce security mutch, but will stop triggering bugs in other packages > by default. While this is true, I disagree about the tradeoff. > > If you precreate the directory before pam_tmpdir is invoked, the > > permissions aren't changed. > > Pre-creating /tmp/user by local admin is a possible workaround. Local > admin may create rc.d script or systemd unit that creates /tmp/user with > desired permissions, but would not providing such a script by the > package itself be a better solution? echo "d /tmp/user 0755 root root -" > /etc/tmpfiles.d/pam-tmpfiles.conf I guess I could ship that in the default configuration, but with 0711 permissions, that'll make it pretty easy to find and change for interested users. -- Tollef Fog Heen UNIX is user friendly, it's just picky about who its friends are
