From mboxrd@z Thu Jan  1 00:00:00 1970
Path: news.gmane.org!not-for-mail
From: Sven Joachim <svenjoac@gmx.de>
Newsgroups: gmane.emacs.devel,gmane.emacs.pretest.bugs
Subject: Re: creating backups in temporary directories
Date: Fri, 07 Sep 2007 21:49:52 +0200
Message-ID: <87y7fii7bz.fsf@gmx.de>
References: <a9691ee20709070342w43d278cfmd4ca133068d35221@mail.gmail.com>
	<85sl5q5vy6.fsf@lola.goethe.zz>
	<jwvfy1q4axa.fsf-monnier+emacs@gnu.org>
NNTP-Posting-Host: lo.gmane.org
Mime-Version: 1.0
Content-Type: text/plain; charset=us-ascii
X-Trace: sea.gmane.org 1189194979 7827 80.91.229.12 (7 Sep 2007 19:56:19 GMT)
X-Complaints-To: usenet@sea.gmane.org
NNTP-Posting-Date: Fri, 7 Sep 2007 19:56:19 +0000 (UTC)
Cc: Chris Moore <christopher.ian.moore@gmail.com>, emacs-pretest-bug@gnu.org
To: Stefan Monnier <monnier@iro.umontreal.ca>
Original-X-From: emacs-devel-bounces+ged-emacs-devel=m.gmane.org@gnu.org Fri Sep 07 21:56:19 2007
Return-path: <emacs-devel-bounces+ged-emacs-devel=m.gmane.org@gnu.org>
Envelope-to: ged-emacs-devel@m.gmane.org
Original-Received: from lists.gnu.org ([199.232.76.165])
	by lo.gmane.org with esmtp (Exim 4.50)
	id 1ITjw7-0008Pp-6J
	for ged-emacs-devel@m.gmane.org; Fri, 07 Sep 2007 21:56:15 +0200
Original-Received: from localhost ([127.0.0.1] helo=lists.gnu.org)
	by lists.gnu.org with esmtp (Exim 4.43)
	id 1ITjw4-0004Ec-Tf
	for ged-emacs-devel@m.gmane.org; Fri, 07 Sep 2007 15:56:12 -0400
Original-Received: from mailman by lists.gnu.org with tmda-scanned (Exim 4.43)
	id 1ITjtu-00015Y-BJ
	for emacs-devel@gnu.org; Fri, 07 Sep 2007 15:53:58 -0400
Original-Received: from exim by lists.gnu.org with spam-scanned (Exim 4.43)
	id 1ITjtr-00010o-Ir
	for emacs-devel@gnu.org; Fri, 07 Sep 2007 15:53:56 -0400
Original-Received: from [199.232.76.173] (helo=monty-python.gnu.org)
	by lists.gnu.org with esmtp (Exim 4.43) id 1ITjtq-00010Y-4c
	for emacs-devel@gnu.org; Fri, 07 Sep 2007 15:53:54 -0400
Original-Received: from fencepost.gnu.org ([140.186.70.10])
	by monty-python.gnu.org with esmtp (Exim 4.60)
	(envelope-from <svenjoac@gmx.de>) id 1ITjtp-0008MN-I5
	for emacs-devel@gnu.org; Fri, 07 Sep 2007 15:53:53 -0400
Original-Received: from monty-python.gnu.org ([199.232.76.173])
	by fencepost.gnu.org with esmtp (Exim 4.60)
	(envelope-from <svenjoac@gmx.de>) id 1ITjpG-000069-Cl
	for emacs-pretest-bug@gnu.org; Fri, 07 Sep 2007 15:49:10 -0400
Original-Received: from Debian-exim by monty-python.gnu.org with spam-scanned (Exim
	4.60) (envelope-from <svenjoac@gmx.de>) id 1ITjpW-00050E-Gw
	for emacs-pretest-bug@gnu.org; Fri, 07 Sep 2007 15:49:29 -0400
Original-Received: from mail.gmx.net ([213.165.64.20])
	by monty-python.gnu.org with smtp (Exim 4.60)
	(envelope-from <svenjoac@gmx.de>) id 1ITjpV-0004yt-TX
	for emacs-pretest-bug@gnu.org; Fri, 07 Sep 2007 15:49:26 -0400
Original-Received: (qmail invoked by alias); 07 Sep 2007 19:49:23 -0000
Original-Received: from p548670F5.dip.t-dialin.net (EHLO debian) [84.134.112.245]
	by mail.gmx.net (mp005) with SMTP; 07 Sep 2007 21:49:23 +0200
X-Authenticated: #28250155
X-Provags-ID: V01U2FsdGVkX18OXmcRPnIOnjYge+zSLlOJ8cUrCTqaE28SYDVXZ6
	D6KDJ7QaJfr752
In-Reply-To: <jwvfy1q4axa.fsf-monnier+emacs@gnu.org> (Stefan Monnier's message
	of "Fri\, 07 Sep 2007 13\:57\:26 -0400")
User-Agent: Gnus/5.11 (Gnus v5.11) Emacs/22.1.50 (gnu/linux)
X-Y-GMX-Trusted: 0
X-Detected-Kernel: Linux 2.6, seldom 2.4 (older, 4)
X-Detected-Kernel: Linux 2.6, seldom 2.4 (older, 4)
X-BeenThere: emacs-devel@gnu.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: "Emacs development discussions." <emacs-devel.gnu.org>
List-Unsubscribe: <http://lists.gnu.org/mailman/listinfo/emacs-devel>,
	<mailto:emacs-devel-request@gnu.org?subject=unsubscribe>
List-Archive: <http://lists.gnu.org/pipermail/emacs-devel>
List-Post: <mailto:emacs-devel@gnu.org>
List-Help: <mailto:emacs-devel-request@gnu.org?subject=help>
List-Subscribe: <http://lists.gnu.org/mailman/listinfo/emacs-devel>,
	<mailto:emacs-devel-request@gnu.org?subject=subscribe>
Original-Sender: emacs-devel-bounces+ged-emacs-devel=m.gmane.org@gnu.org
Errors-To: emacs-devel-bounces+ged-emacs-devel=m.gmane.org@gnu.org
Xref: news.gmane.org gmane.emacs.devel:78188 gmane.emacs.pretest.bugs:19769
Archived-At: <http://permalink.gmane.org/gmane.emacs.devel/78188>

Stefan Monnier <monnier@iro.umontreal.ca> writes:

>>> Suggestions:
>>> 1) make that the default value - why not write backups in /tmp?
>
>> Because making a "backup" for a file in a place that is regularly
>> cleaned out is creating an illusion of security.
>
> Worse yet: creating backup files in /tmp would be a security hole:
> some other user seeing you're currently editing /tmp/foo could create
> a symlink /tmp/foo~ to some interesting place and then when you save your
> file the backup could be placed at that interesting place chosen by
> the attacker.

Really?  I've just tried this (with a symlink in ~/tmp instead of
/tmp), and Emacs removed the symlink for the backup before saving the
file.  Are there circumstances where it might not do this?