[Pkg-privacy-maintainers] Bug#911907: [monkeysphere] Bug#911907: monkeysphere: Patch v3
Daniel Kahn Gillmor
dkg at fifthhorseman.net
Tue Oct 30 18:44:01 GMT 2018
On Tue 2018-10-30 11:03:02 -0700, Sunil Mohan Adapa wrote:
> We have been setting the TMPDIR to
> /var/lib/monkeysphere/authentication/tmp/ in FreedomBox for some time
> now to work around the problem. So, I think, in general, this solution
> is fine. However, perhaps we could conservatively use it only in the
> very few situations that we actually need to share TMPDIR across two
> process owned by different users.
Are you patching monkeysphere for this? or are you doing it outside of
monkeysphere?
on systems that i'm looking at, /varlib/monkeysphere/authentication/tmp
is owned root:monkeysphere, with permissions 0750.
so the monkeysphere user can read in it, but can't write.
can you give an example of the specific error cases you're seeing with
libpam-tmpdir? even better, perhaps this could be followup on
https://bugs.debian.org/656750 :)
Regards,
--dkg
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 227 bytes
Desc: not available
URL: <http://alioth-lists.debian.net/pipermail/pkg-privacy-maintainers/attachments/20181030/81854c52/attachment.sig>
More information about the Pkg-privacy-maintainers
mailing list