F22 System Wide Change: Enable Polyinstantiated /tmp and /var/tmp directories by default
Tomas Hozza
thozza at redhat.com
Tue Jan 20 12:16:04 UTC 2015
On 01/20/2015 01:08 PM, Tom Hughes wrote:
> On 20/01/15 11:53, Jaroslav Reznik wrote:
>
> > * Other developers:
> > ** Add /tmp-inst and /var/tmp/tmp-inst to filesystem. (packagename: filesystem)
> > ** Enable namespaces in /etc/security/namespace.conf (packagename: PAM)
> > ** Enable proper selinux context and polyinstantiation_enabled boolean to be
> > set (packagename: selinux-policy-targeted or selinux-policy)
>
> So this effectively reverses tmp-on-tmpfs for users other than root and adm
> right? Because /tmp will actually be a subdirectory of /tmp-inst which will be a
> real directory?
>
Why do you think this? I don't see any reason why the new tmp-inst directories can
not be on tmpfs...
> Incidentally, why /tmp-inst but /var/tmp/tmp-inst? Why not /tmp/tmp-inst for
> /tmp or /var/tmp-inst for /var/tmp? Shouldn't the naming be consistent?
>
> Tom
>
Regards,
--
Tomas Hozza
Software Engineer - EMEA ENG Developer Experience
PGP: 1D9F3C2D
Red Hat Inc. http://cz.redhat.com
More information about the devel
mailing list