[TriLUG] Over quota script
Mike Johnson
mike at enoch.org
Sun Sep 15 22:41:53 EDT 2002
John Beimler [john at radiomind.com] wrote:
> now Jon, I thought you had learned about mktemp. :)
>
> mktemp will give you a temp file with a semi-random name, in /tmp.
> Makes securing stuff easier (and you don't need to write to root's home
> directory, and you don't have a predictable temp file for people to
> attempt to exploit.
See, I almost sent the same message. But as I re-read my message before
I sent it, I noticed that all his stuff was in /root/tmp. While I
strongly endorse the use of mktemp, if a regular user has write access
to root's home directory, you have bigger problems.
Mike
--
"Let the power of Ponch compel you! Let the power of Ponch compel you!"
-- Zorak on Space Ghost
GNUPG Key fingerprint = ACD2 2F2F C151 FB35 B3AF C821 89C4 DF9A 5DDD 95D1
GNUPG Key = http://www.enoch.org/mike/mike.pubkey.asc
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 230 bytes
Desc: not available
URL: <http://www.trilug.org/pipermail/trilug/attachments/20020915/c28abe9e/attachment.pgp>
More information about the TriLUG
mailing list