From mboxrd@z Thu Jan  1 00:00:00 1970
Path: quimby.gnus.org!not-for-mail
From: Richard Stallman <rms@gnu.org>
Newsgroups: gmane.emacs.devel
Subject: Re: many packages write to `temporary-file-directory' insecurely
Date: Tue, 5 Mar 2002 12:07:36 -0700 (MST)
Message-ID: <200203051907.g25J7a901102@wijiji.santafe.edu>
References: <1014945351.23435.102.camel@space-ghost> <m3lmdbkwz0.fsf@Janik.cz> <1015103550.7365.17.camel@space-ghost> <m3n0xqimw7.fsf@Janik.cz> <200203031718.g23HIKt23295@rum.cs.yale.edu> <200203042340.g24NexL00497@aztec.santafe.edu>  <jebse3gvu7.fsf@sykes.suse.de> <200203051520.g25FKbw01899@rum.cs.yale.edu>
Reply-To: rms@gnu.org
NNTP-Posting-Host: quimby2.netfonds.no
X-Trace: quimby2.netfonds.no 1015355764 5498 195.204.10.66 (5 Mar 2002 19:16:04 GMT)
X-Complaints-To: usenet@quimby2.netfonds.no
NNTP-Posting-Date: 5 Mar 2002 19:16:04 GMT
Cc: schwab@suse.de, monnier+gnu/emacs@rum.cs.yale.edu, Pavel@Janik.cz,
   walters@verbum.org, emacs-devel@gnu.org
Original-Received: from fencepost.gnu.org ([199.232.76.164])
	by quimby2.netfonds.no with esmtp (Exim 3.12 #1 (Debian))
	id 16iKPs-0001Qa-00
	for <emacs-devel@quimby.gnus.org>; Tue, 05 Mar 2002 20:16:04 +0100
Original-Received: from localhost ([127.0.0.1] helo=fencepost.gnu.org)
	by fencepost.gnu.org with esmtp (Exim 3.33 #1 (Debian))
	id 16iKJE-00062f-00; Tue, 05 Mar 2002 14:09:12 -0500
Original-Received: from pele.santafe.edu ([192.12.12.119])
	by fencepost.gnu.org with esmtp (Exim 3.33 #1 (Debian))
	id 16iKHh-0005w3-00; Tue, 05 Mar 2002 14:07:37 -0500
Original-Received: from wijiji.santafe.edu (wijiji [192.12.12.5])
	by pele.santafe.edu (8.11.6+Sun/8.9.3) with ESMTP id g25J7ju19265;
	Tue, 5 Mar 2002 12:07:45 -0700 (MST)
Original-Received: (from rms@localhost)
	by wijiji.santafe.edu (8.11.6+Sun/8.9.3) id g25J7a901102;
	Tue, 5 Mar 2002 12:07:36 -0700 (MST)
X-Authentication-Warning: wijiji.santafe.edu: rms set sender to rms@wijiji using -f
Original-To: monnier+gnu/emacs@rum.cs.yale.edu
In-reply-to: <200203051520.g25FKbw01899@rum.cs.yale.edu>
	(monnier+gnu/emacs@rum.cs.yale.edu)
Errors-To: emacs-devel-admin@gnu.org
X-BeenThere: emacs-devel@gnu.org
X-Mailman-Version: 2.0.5
Precedence: bulk
List-Help: <mailto:emacs-devel-request@gnu.org?subject=help>
List-Post: <mailto:emacs-devel@gnu.org>
List-Subscribe: <http://mail.gnu.org/mailman/listinfo/emacs-devel>,
	<mailto:emacs-devel-request@gnu.org?subject=subscribe>
List-Id: Emacs development discussions. <emacs-devel.gnu.org>
List-Unsubscribe: <http://mail.gnu.org/mailman/listinfo/emacs-devel>,
	<mailto:emacs-devel-request@gnu.org?subject=unsubscribe>
List-Archive: <http://mail.gnu.org/pipermail/emacs-devel/>
Xref: quimby.gnus.org gmane.emacs.devel:1750
X-Report-Spam: http://spam.gmane.org/gmane.emacs.devel:1750

    > The convention for /var/games is that it is writable for a special group
    > (game) only, and any program wanting to have access to it must be setgid
    > game.

Emacs doesn't need to write in /var/games, it just needs to be able to
write certain specific files that are somewhere under /var/games.
Those files could be created by Emacs installation (which is run as
root) and given modes that allow Emacs to update them.


_______________________________________________
Emacs-devel mailing list
Emacs-devel@gnu.org
http://mail.gnu.org/mailman/listinfo/emacs-devel