From mboxrd@z Thu Jan 1 00:00:00 1970 Path: main.gmane.org!not-for-mail From: Richard Stallman Newsgroups: gmane.emacs.devel Subject: Re: many packages write to `temporary-file-directory' insecurely Date: Sat, 30 Mar 2002 18:24:55 -0700 (MST) Sender: emacs-devel-admin@gnu.org Message-ID: <200203310124.g2V1Ot110614@aztec.santafe.edu> References: <1014945351.23435.102.camel@space-ghost> <1015103550.7365.17.camel@space-ghost> <200203031718.g23HIKt23295@rum.cs.yale.edu> <200203042340.g24NexL00497@aztec.santafe.edu> <200203051520.g25FKbw01899@rum.cs.yale.edu> <1015389617.25883.37.camel@space-ghost> <1015400126.18074.0.camel@space-ghost> <200203080908.g28986Z02524@wijiji.santafe.edu> <1015757200.18074.71.camel@space-ghost> <200203110901.g2B91Ej04386@wijiji.santafe.edu> <1016402881.5455.24.camel@space-ghost> <200203182006.g2IK6dB08697@wijiji.santafe.edu> <1016490983.17157.4.camel@space-ghost> <200203200510.g2K5Atl09572@wijiji.santafe.edu> <1017272799.2144.8.camel@space-ghost> Reply-To: rms@gnu.org NNTP-Posting-Host: localhost.gmane.org X-Trace: main.gmane.org 1017538375 550 127.0.0.1 (31 Mar 2002 01:32:55 GMT) X-Complaints-To: usenet@main.gmane.org NNTP-Posting-Date: Sun, 31 Mar 2002 01:32:55 +0000 (UTC) Cc: emacs-devel@gnu.org Original-Received: from quimby.gnus.org ([80.91.224.244]) by main.gmane.org with esmtp (Exim 3.33 #1 (Debian)) id 16rUDH-00008l-00 for ; Sun, 31 Mar 2002 03:32:55 +0200 Original-Received: from fencepost.gnu.org ([199.232.76.164]) by quimby.gnus.org with esmtp (Exim 3.12 #1 (Debian)) id 16rUNo-0005GD-00 for ; Sun, 31 Mar 2002 03:43:48 +0200 Original-Received: from localhost ([127.0.0.1] helo=fencepost.gnu.org) by fencepost.gnu.org with esmtp (Exim 3.34 #1 (Debian)) id 16rU8T-0007b0-00; Sat, 30 Mar 2002 20:27:57 -0500 Original-Received: from pele.santafe.edu ([192.12.12.119]) by fencepost.gnu.org with esmtp (Exim 3.34 #1 (Debian)) id 16rU5Y-0007Hu-00; Sat, 30 Mar 2002 20:24:56 -0500 Original-Received: from aztec.santafe.edu (aztec [192.12.12.49]) by pele.santafe.edu (8.11.6+Sun/8.9.3) with ESMTP id g2V1Ota05639; Sat, 30 Mar 2002 18:24:55 -0700 (MST) Original-Received: (from rms@localhost) by aztec.santafe.edu (8.10.2+Sun/8.9.3) id g2V1Ot110614; Sat, 30 Mar 2002 18:24:55 -0700 (MST) X-Authentication-Warning: aztec.santafe.edu: rms set sender to rms@aztec using -f Original-To: walters@debian.org In-Reply-To: <1017272799.2144.8.camel@space-ghost> (message from Colin Walters on 27 Mar 2002 18:46:39 -0500) Errors-To: emacs-devel-admin@gnu.org X-BeenThere: emacs-devel@gnu.org X-Mailman-Version: 2.0.8 Precedence: bulk List-Help: List-Post: List-Subscribe: , List-Id: Emacs development discussions. List-Unsubscribe: , List-Archive: Xref: main.gmane.org gmane.emacs.devel:2271 X-Report-Spam: http://spam.gmane.org/gmane.emacs.devel:2271 My concern is that since Emacs is often used on large, multiuser systems, many of which use disk quotas, a setgid program without any limits on the files it creates would be a way for users to get around their disk quotas. One solution for that is to limit the format of the data that goes in the file so as to specialize it for game scores. _______________________________________________ Emacs-devel mailing list Emacs-devel@gnu.org http://mail.gnu.org/mailman/listinfo/emacs-devel