author: Satoshi Taoka <taoka@FreeBSD.org> 1999-08-12 00:22:48 +0000
committer: Satoshi Taoka <taoka@FreeBSD.org> 1999-08-12 00:22:48 +0000
commit: 373028303122d638cd1afcc42839ae1cc58b800a (patch)
tree: 03a9d4619f2a653956c9f6bb57be81158b11ad8a /sysutils/stmpclean/pkg-descr
parent: 36c79f9c942287a389b4bb9fffe7a7a7f02bf4de (diff)
1 files changed, 13 insertions, 0 deletions
diff --git a/sysutils/stmpclean/pkg-descr b/sysutils/stmpclean/pkg-descr
new file mode 100644
index 000000000000..4b570d554b8c
--- /dev/null
+++ b/sysutils/stmpclean/pkg-descr
@@ -0,0 +1,13 @@
+The utility stmpclean securely deletes old files from directories
+such as /tmp and /var/tmp.
+
+Combining find and rm (possibly with xargs) for this purpose allows
+a local attacker to delete any file on the system.  It is a security
+hole.
+
+Using one of the nifty floating around Perl scripts for this purpose
+is dangerous: when you have an attack they have a tendency to behave
+like forking bombs, making matters much worse.
+
+--Stanislav
+shalunov@mccme.ru
author	Satoshi Taoka <taoka@FreeBSD.org>	1999-08-12 00:22:48 +0000
committer	Satoshi Taoka <taoka@FreeBSD.org>	1999-08-12 00:22:48 +0000
commit	373028303122d638cd1afcc42839ae1cc58b800a (patch)
tree	03a9d4619f2a653956c9f6bb57be81158b11ad8a /sysutils/stmpclean/pkg-descr
parent	36c79f9c942287a389b4bb9fffe7a7a7f02bf4de (diff)