[TriLUG] Over quota script
Sun, 15 Sep 2002 22:41:53 -0400
Content-Type: text/plain; charset=us-ascii
John Beimler [email@example.com] wrote:
> now Jon, I thought you had learned about mktemp. :)
> mktemp will give you a temp file with a semi-random name, in /tmp.=20
> Makes securing stuff easier (and you don't need to write to root's home
> directory, and you don't have a predictable temp file for people to
> attempt to exploit.
See, I almost sent the same message. But as I re-read my message before
I sent it, I noticed that all his stuff was in /root/tmp. While I
strongly endorse the use of mktemp, if a regular user has write access
to root's home directory, you have bigger problems.
"Let the power of Ponch compel you! Let the power of Ponch compel you!"
-- Zorak on Space Ghost
GNUPG Key fingerprint =3D ACD2 2F2F C151 FB35 B3AF C821 89C4 DF9A 5DDD 95D1
GNUPG Key =3D http://www.enoch.org/mike/mike.pubkey.asc
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.0.6 (OpenBSD)
Comment: For info see http://www.gnupg.org
-----END PGP SIGNATURE-----