[RFC] XDG_RUNTIME_DIR
Lennart Poettering
mzkqt at 0pointer.de
Tue Nov 9 15:04:27 PST 2010
On Tue, 09.11.10 16:35, David Zeuthen (zeuthen at gmail.com) wrote:
>
> Hey,
>
> On Sat, Nov 6, 2010 at 6:03 PM, Lennart Poettering <mzkqt at 0pointer.de> wrote:
> > - It is owned by the user and the user is the only one having write
> > access to it
>
> Your current proposal allows an implementation where other users can
> read or enumerate the directory. This is bad. Please require e.g. mode
> 0700.
Yes, 0700 is what we should be using, in particular to allow people to
use file locks safely.
In fact systemd already generates this directory 0700.
Lennart
--
Lennart Poettering - Red Hat, Inc.
More information about the xdg
mailing list