Re: gpilotd & corba

From: Manish Vachharajani <mvachhar vger rutgers edu>
To: gnome-pilot-list gnome org
Subject: Re: gpilotd & corba
Date: Wed, 16 Sep 1998 17:08:32 -0400 (EDT)

On Wed, 16 Sep 1998, Michael Fulbright wrote:

> 
> deity@trinity.dbc.bib.dk said:
> > 4) Currently, I'll store all requests as files /var/spool/gpilotd/
> > $USER/, and let the name/contents indicate what to do, and the forked
> > gpilotd will read these upon sync. (any security issues here that I'm
> > missing ?) 
> 
> If this directory has a predictable name, cant some nasty person take
> advantage of this (like all the /tmp exploits recently discussed)?
> 
> At a minimum I guess you just take a look at the existing path and make
> sure its really setup like you want before you use it.
> 
> Dr Mike
> 

I think that these dirs are writable only by the users.  I personally
think that we should use a directory in their home directory to avoid
quota problems.

Manish Vachharajani
<mvachhar@vger.rutgers.edu>

References:
- Re: gpilotd & corba
  - From: Michael Fulbright

[Date Prev][Date Next] [Thread Prev][Thread Next] [Thread Index] [Date Index] [Author Index]