diff options
Diffstat (limited to 'sysutils/stmpclean/pkg-descr')
| -rw-r--r-- | sysutils/stmpclean/pkg-descr | 13 |
1 files changed, 13 insertions, 0 deletions
diff --git a/sysutils/stmpclean/pkg-descr b/sysutils/stmpclean/pkg-descr new file mode 100644 index 000000000000..4b570d554b8c --- /dev/null +++ b/sysutils/stmpclean/pkg-descr @@ -0,0 +1,13 @@ +The utility stmpclean securely deletes old files from directories +such as /tmp and /var/tmp. + +Combining find and rm (possibly with xargs) for this purpose allows +a local attacker to delete any file on the system. It is a security +hole. + +Using one of the nifty floating around Perl scripts for this purpose +is dangerous: when you have an attack they have a tendency to behave +like forking bombs, making matters much worse. + +--Stanislav +shalunov@mccme.ru |