Once upon a time, Gregory Maxwell <gmaxwell(a)gmail.com> said:
On Mon, Nov 7, 2011 at 8:48 PM, Lennart Poettering
<mzerqung(a)0pointer.de> wrote:
> If run on the main namespace all they see is that the files are in some
> randomized subdir of /tmp, instead of /tmp itself.
Is the randomization required? If they were named after the
user/service that created
them (perhaps with some randomization too e.g.
/tmp/mount.fooservice.$random would be
much more discoverable and maintainable then /tmp/$random. Systemctl
show is good
and needed for automation, but my brain stores more sysadmin trivial
than I like already.
Well, if they're subdirectories of /tmp, you'd have to deal with all the
usual /tmp attacks of known targets.
--
Chris Adams <cmadams(a)hiwaay.net>
Systems and Network Administrator - HiWAAY Internet Services
I don't speak for anybody but myself - that's enough trouble.