From kde-devel  Tue Dec 27 19:27:28 2005
From: Kevin Krammer <kevin.krammer () gmx ! at>
Date: Tue, 27 Dec 2005 19:27:28 +0000
To: kde-devel
Subject: Re: One Way to Increase KDE security
Message-Id: <200512272027.35169.kevin.krammer () gmx ! at>
X-MARC-Message: https://marc.info/?l=kde-devel&m=113571175100411
MIME-Version: 1
Content-Type: multipart/mixed; boundary="--===============0290895896=="

--===============0290895896==
Content-Type: multipart/signed;
  boundary="nextPart8946488.YYCXzocDeM";
  protocol="application/pgp-signature";
  micalg=pgp-sha1
Content-Transfer-Encoding: 7bit

--nextPart8946488.YYCXzocDeM
Content-Type: text/plain;
  charset="iso-8859-1"
Content-Transfer-Encoding: quoted-printable
Content-Disposition: inline

On Tuesday 27 December 2005 19:58, Dave Feustel wrote:

> 'threat' implies *potential* or *possible* damage. The unused socket could
> possibly be used to cause damage. I prefer to follow what I think is the
> OpenBSD philosophy and deal with a potential threat before it becomes
> manifest. But  the semantic wrangling aside, I suspect we are on the same
> page.

Given that we are talking about OpenBSD, I find it highly unlikely that a=20
close unix domain socket can be used to break anything.

> For starters, start kde, do some things, exit kde, then do a find /tmp -l=
s.
> There always seem to be KDE sockets lying around. I have "export
> TMPDIR=3D/home/daf/Tmp" in my .profile (and do "rm -rf Tmp/*" after a kde
> session) but some KDE and XORG temp files are still put in /tmp. I now do
> "rm -rf /tmp/*" regularly to get rid of the files remaining.

Try KDETMP and KDEVARTMP according to the KDE sys admin documentation on=20
environment variables.

Cheers,
Kevin

=2D-=20
Kevin Krammer <kevin.krammer@gmx.at>
Qt/KDE Developer, Debian User
Moderator: www.mrunix.de (German), www.qtforum.org

--nextPart8946488.YYCXzocDeM
Content-Type: application/pgp-signature

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.2 (GNU/Linux)

iD8DBQBDsZWnnKMhG6pzZJIRAtTwAJ409KW/LY9bCovSSfrqZRAk/FpISgCfXFXl
kYFNde+nCNZZX5M0+ejmGSE=
=ooC0
-----END PGP SIGNATURE-----

--nextPart8946488.YYCXzocDeM--

--===============0290895896==
Content-Type: text/plain; charset="us-ascii"
MIME-Version: 1.0
Content-Transfer-Encoding: 7bit
Content-Disposition: inline

 
>> Visit http://mail.kde.org/mailman/listinfo/kde-devel#unsub to unsubscribe <<

--===============0290895896==--