Re: Polyinstantiated /tmp

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 



-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

On 10/31/2010 03:07 PM, Matt McCutchen wrote:
> On Wed, 2010-10-20 at 08:13 -0400, Daniel J Walsh wrote:
>> I have been trying to get system processes to stop using /tmp for years.
>>
>> http://danwalsh.livejournal.com/11467.html
>>
>> As some one who lives with polyinstatiated namespace /tmp,  The only
>> problem I know of now is handing of kerberos tickets.  Whenever a system
>> process (root) needs to communicate with a user via /tmp.  namespace
>> /tmp breaks it.  sssd can not create kerberos tickets in my /tmp and
>> gssd can not find my kerberos tickets in /tmp.  I believe the solution
>> to both is to move the tickets to be managed by sssd and leave /tmp to
>> users.
>>
>> BTW, X has solved this problem a couple of years ago by using virtual
>> namespace for its sockets.
> 
> In the abstract namespace, don't you have the same problem where if the
> real X server dies for any reason, other users can create a socket at
> the same path and mess with your applications?
> 
Yes although there, you can only create sockets.
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.11 (GNU/Linux)
Comment: Using GnuPG with Fedora - http://enigmail.mozdev.org/

iEYEARECAAYFAkzOtIAACgkQrlYvE4MpobPXgQCdH+Z26zudSVlF/SqhuXLdFJcE
NHsAoNGkABKeaSxJ67kXjnuYM5tG1Nkr
=qB2z
-----END PGP SIGNATURE-----
-- 
devel mailing list
devel@xxxxxxxxxxxxxxxxxxxxxxx
https://admin.fedoraproject.org/mailman/listinfo/devel


[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
[Index of Archives]     [Fedora Announce]     [Fedora Kernel]     [Fedora Testing]     [Fedora Formulas]     [Fedora PHP Devel]     [Kernel Development]     [Fedora Legacy]     [Fedora Maintainers]     [Fedora Desktop]     [PAM]     [Red Hat Development]     [Gimp]     [Yosemite News]
  Powered by Linux