[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: StarOffice 5.2 Temporary Dir Vulnerability

To: BUGTRAQ@SECURITYFOCUS.COM
Subject: Re: StarOffice 5.2 Temporary Dir Vulnerability
From: Chmouel Boudjnah <chmouel@MANDRAKESOFT.COM>
Date: Thu, 9 Nov 2000 07:42:51 -0800

Kurt Seifried <listuser@seifried.org> writes:

> honor $TMP). Instead of mucking about with /tmp permissions it might be a 
>whole
> lot simpler to chuck a tmp dir into etcskel (and all existing user's dirs) 
>and a
> $TMP definition into the various shell config files (i.e. /etc/profile). I
> believe Mandrake does this now (they told me they'd do it, I haven't 
>actually
> checked the latest release).

if SECURE_TMP is defined in the /etc/sysconfig/system file.

--
MandrakeSoft Inc                     http://www.chmouel.org
                      --Chmouel

Prev by Date: Re: BIND 8.2.2-P5 Possible DOS
Next by Date: BindView RAZOR Advisory: Novell Netware
Prev by thread: Re: StarOffice 5.2 Temporary Dir Vulnerability
Next by thread: Lotus Notes R5 clients - no warning for broken signature or encryption
Index(es):
- Date
- Thread