> Unfortunately the use of TMPDIR is inherited across "su" and > then, when users assume roles, TMPDIR no longer works. > > I would think this is too risky to change.
It doesn't seem like *risk* per se, it's more like it's an incomplete change. If we're to make TMPDIR "work" correctly, it needs to handle the su and rbac case too. tim
