[systemd-devel] Wildcards support for tmpfiles
Gustavo Sverzut Barbieri
barbieri at profusion.mobi
Sun Nov 28 12:57:17 PST 2010
On Sunday, November 28, 2010, Andrey Borzenkov <arvidjaar at gmail.com> wrote:
> Here is actual snippet from rc.sysinit:
>
> # Clean up various /tmp bits
> [ -n "$SELINUX_STATE" ] && restorecon /tmp
> rm -f /tmp/.X*-lock /tmp/.lock.* /tmp/.gdm_socket /tmp/.s.PGSQL.*
> rm -rf /tmp/.X*-unix /tmp/.ICE-unix /tmp/.font-unix /tmp/hsperfdata_* \
> /tmp/kde-* /tmp/ksocket-* /tmp/mc-* /tmp/mcop-* /tmp/orbit-* \
> /tmp/scrollkeeper-* /tmp/ssh-* \
> /dev/.in_sysinit
>
> Most of these directories are actually per-user so there is no way to
> list each one individually. Is wildcard support just not implemented
> or there are arguments against adding it?
Lennart bashed similar ideas from me since he (correctly) argues that
this is insecure and may prove easy to DoS.
He is trying to push a per user tmp as XDG standard.
However I don't think having fnmatch instead of strcmp would be bad
>
> TIA
> _______________________________________________
> systemd-devel mailing list
> systemd-devel at lists.freedesktop.org
> http://lists.freedesktop.org/mailman/listinfo/systemd-devel
>
--
Gustavo Sverzut Barbieri
http://profusion.mobi embedded systems
--------------------------------------
MSN: barbieri at gmail.com
Skype: gsbarbieri
Mobile: +55 (19) 9225-2202
More information about the systemd-devel
mailing list