Andre Poenitz wrote:
>
> > should be masked with '077' but it's probably not worth to start a huge
> > discussion about this here. I understand what's going on and I have
> > configured an appropriate solution for my systems.
>
> Well, is there any reason not to restrict tempfile access to the user?
> We should be as restrictive as technically feasible IMHO.
Is there any reason to even put them in /tmp to begin with? They belong
to the user, they should go somewhere under the user's home directory.
Putting them in /tmp is just asking for a security problem.
Regards,
Christian.
