blob: 4b570d554b8c11847c2f3194764899e2b68877e6 (
plain) (
blame)
1
2
3
4
5
6
7
8
9
10
11
12
13
|
The utility stmpclean securely deletes old files from directories
such as /tmp and /var/tmp.
Combining find and rm (possibly with xargs) for this purpose allows
a local attacker to delete any file on the system. It is a security
hole.
Using one of the nifty floating around Perl scripts for this purpose
is dangerous: when you have an attack they have a tendency to behave
like forking bombs, making matters much worse.
--Stanislav
shalunov@mccme.ru
|
