[badpenguin79@hotmail.com: [Full-disclosure] [ZH2005-02SA] Insecure tmp file creation in Wine]

Peter Bortas peter at bortas.org
Tue Mar 15 07:11:09 CST 2005


Alexandre Julliard <julliard at winehq.org> writes:

> Peter Bortas <peter at bortas.org> writes:
>
>> Home directories are group readable on many sites, so to prevent
>> information leakage 0600 would still be prudent.
>
> There is no leakage at all, the permissions are identical to the
> permissions on the final registry files. If users don't want their
> registry to be readable they can set umask or protect their .wine
> directory.

Excellent.

-- 
Peter Bortas                  http://peter.bortas.org




More information about the wine-devel mailing list