Russell Coker <russ...@coker.com.au> writes:
> On Wed, 6 Apr 2011, Yaroslav Halchenko <deb...@onerussian.com> wrote:
>> sorry for a blunt follow-up -- wouldn't making /var/run writable by
>> regular mortals ask for security concerns if an attacker starts
>> pre-creating files/pipes trying to steal the communications of
>> daemons spawned by root or just ruin some data on the system by
>> symlinking against root-owned files?
>
> There have been security issues with daemons using /tmp for Unix domain
> sockets in the past.
And the same issues would happen in /var/run. A different base path
doesn't make security bugs disapear.
MfG
Goswin
--
To UNSUBSCRIBE, email to debian-devel-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
Archive: http://lists.debian.org/87r59fbf7x.fsf@frosties.localnet
