Hi, /tmp is a really bad idea and a security hole, if the name .rnd is used at least.
I think having it shared between users would perhaps be a security hole as well. Having it use a proper tmpfile may be possible, but it may still be at risk. I'm not sure the file is required though, so it may be possible to not fail if the file can't be created, I'm not sure. Thanks, James -- package ssl-cert 1.0.14-0ubuntu2.1 failed to install/upgrade: https://bugs.launchpad.net/bugs/250400 You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. -- ubuntu-bugs mailing list [email protected] https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
