←back to thread

Against /tmp

(dotat.at)
178 points todsacerdoti | 2 comments | 22 Oct 24 12:36 UTC | HN request time: 0.404s | source
Show context
Joker_vD ◴[22 Oct 24 13:18 UTC] No.41913946[source]
> The fix, way back when, should have been for login(8) to create a per-user temporary directory in a sensible place before it drops privilege, and set $TMPDIR so the user’s shell and child processes can find it.

Something like

    tmpdir := "/tmp/${USERNAME}"
    loop:
        rmdir(tmpdir, recurse=true)
        while not mkdir(tmpdir, 0o700, must-create=true)
    chown(tmpdir, user=$USERNAME, group=$USERGROUP)
    export("TMPDIR", tmpdir)
with /tmp having root:root owner with 0o775 permissions on it? Yeah, would've been nice.
replies(3): >>41914009 #>>41914158 #>>41916846 #
1. cryptonector ◴[22 Oct 24 17:54 UTC] No.41916846[source]
/tmp is 01777

Anything that requires login(8) or PAM to make it happen is insufficient. This has to happen in environments like Kubernetes too.

replies(1): >>41918577 #
2. Joker_vD ◴[22 Oct 24 20:53 UTC] No.41918577[source]
It doesn't have to be, does it? Drop the S_IWOTH from it.