I. Szczesniak wrote: >> Unfortunately the use of TMPDIR is inherited across "su" and >> then, when users assume roles, TMPDIR no longer works. >> >> I would think this is too risky to change. > > If that's true then the TMPDIR functionality needs to be removed from > libc and all applications because it is insecure by default.
It isn't insecure, that isn't what Casper said, it just doesn't work nicely. If applications don't check return codes from libc functions and act accordingly then it is them that is broken, and maybe insecure, not the functions themselves. -- Darren J Moffat
