F22 System Wide Change: Enable Polyinstantiated /tmp and /var/tmp directories by default
Tom Hughes
tom at compton.nu
Tue Jan 20 12:08:12 UTC 2015
On 20/01/15 11:53, Jaroslav Reznik wrote:
> * Other developers:
> ** Add /tmp-inst and /var/tmp/tmp-inst to filesystem. (packagename: filesystem)
> ** Enable namespaces in /etc/security/namespace.conf (packagename: PAM)
> ** Enable proper selinux context and polyinstantiation_enabled boolean to be
> set (packagename: selinux-policy-targeted or selinux-policy)
So this effectively reverses tmp-on-tmpfs for users other than root and
adm right? Because /tmp will actually be a subdirectory of /tmp-inst
which will be a real directory?
Incidentally, why /tmp-inst but /var/tmp/tmp-inst? Why not /tmp/tmp-inst
for /tmp or /var/tmp-inst for /var/tmp? Shouldn't the naming be consistent?
Tom
--
Tom Hughes (tom at compton.nu)
http://compton.nu/
More information about the devel
mailing list