On Wednesday 15 February 2023 at 15:21:58, accelerator0099 wrote:
> Apache is unable to access /tmp in any way.
> I always get 403 Forbidden for that.
> Why is /tmp different from others?
My guess (and it is one) is that since /tmp can be written to by any user,
this is a security feature which stops someone running Apache in such a way
that an attacker could get some process to write either a file or a symlink
into /tmp and then be able to retrieve the content remotely over HTTP.
However, given that many systems routinely delete the contents of /tmp on
startup and/or shutdown, why would you ever want to point Apache at files which
exist there?
What is the use case for having servable content under /tmp?
Antony.
--
Tinned food was developed for the British Navy in 1813.
The tin opener was not invented until 1858.
Please reply to the list;
please *don't* CC me.
---------------------------------------------------------------------
To unsubscribe, e-mail: users-unsubscribe@xxxxxxxxxxxxxxxx
For additional commands, e-mail: users-help@xxxxxxxxxxxxxxxx
|