[sr-dev] [kamailio] multiple /tmp file vulnerabilities (#48)
Olle E. Johansson
oej at edvina.net
Sun Feb 1 22:30:57 CET 2015
On 30 Jan 2015, at 14:56, Daniel-Constantin Mierla <miconda at gmail.com> wrote:
> Many thanks Victor for pursuing this and getting it pushed to Debian.
>
Yes!
> Perhaps we can made the default to /var/run/ instead of /tmp/, with Debian using /var/run/kamailio/.
I think that would be a good move.
>
> At the end, I am happy to make it directly defaulting to /var/run/kamailio/. If other OSes have /var/run/ then I guess they are happy creating a new folder in there as well, not just placing new pid/socket/fifo files.
/O
>
> On Fri, Jan 30, 2015 at 12:34 AM, Anthony Messina <notifications at github.com> wrote:
> I'm glad to see work in this direction. I've been using this patch for Fedora 20, 21 & EL7 RPMs to move things from /tmp to /run/kamailio. I'm sure it's not complete, but it's worked well so far.
>
> —
> Reply to this email directly or view it on GitHub.
>
>
> _______________________________________________
> sr-dev mailing list
> sr-dev at lists.sip-router.org
> http://lists.sip-router.org/cgi-bin/mailman/listinfo/sr-dev
>
>
>
>
> --
> Daniel-Constantin Mierla - http://www.asipto.com
> http://twitter.com/#!/miconda - http://www.linkedin.com/in/micond
> _______________________________________________
> sr-dev mailing list
> sr-dev at lists.sip-router.org
> http://lists.sip-router.org/cgi-bin/mailman/listinfo/sr-dev
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.sip-router.org/pipermail/sr-dev/attachments/20150201/bf6875fa/attachment.html>
More information about the sr-dev
mailing list