Certainly, rather safe than sorry ;)
On Mon, Feb 9, 2009 at 7:52 PM, Kees Cook <[email protected]> wrote: > Thanks for taking the time to report this bug and helping to make Ubuntu > better. Removing /tmp is an action only root can perform. This isn't > considered a security problem. Additionally, many local denial of service > issues are not considered security problems: > https://wiki.ubuntu.com/DebuggingSecurity#Local%20Denial%20of%20Service > > ** Changed in: gdm (Ubuntu) > Assignee: (unassigned) => Kees Cook (kees) > Status: New => Invalid > > ** This bug is no longer flagged as a security issue > > ** Visibility changed to: Public > > -- > Can't login to normal user accounts without a /tmp directory > https://bugs.launchpad.net/bugs/327441 > You received this bug notification because you are a direct subscriber > of the bug. > > Status in "gdm" source package in Ubuntu: Invalid > > Bug description: > Binary package hint: gdm > > Accidentally removed my /tmp directory the other day and rebooted for > another reason. When I tired to login back in to my account via GDM > (GNOME), I am presented with an error message that is thrown by xsession. > The error message does not indicate that the /tmp directory doesn't exist. > > The fix is quite simple; reboot to recovery mode and open a root shell. By > doing this, the /tmp directory is automatically created. Now you can once > again login via GDM. > > Tested and reproduced on Ubuntu 8.04.2. > > This essentially created a Denial of Service condition - one can simply > remove /tmp and it will prevent local users from logging in via GDM. > -- Can't login to normal user accounts without a /tmp directory https://bugs.launchpad.net/bugs/327441 You received this bug notification because you are a member of Ubuntu Bugs, which is a direct subscriber. -- ubuntu-bugs mailing list [email protected] https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
