On Wed, Jul 22, 2009 at 10:52:08AM +0200, Paul Wise wrote: > On Wed, Jul 22, 2009 at 12:56 AM, Mike Massonnet<[email protected]> wrote: > > > Slim allows the user to take a screenshot by typing F11, which > > currently defaults to /tmp/slim.png. A user might be able to put a > > symlink there to point to any file on the fs and use it to corrupt > > them. This tpu contains a fix that changes the default location to > > /root/slim.png. > > That directory may not exist if the admin has customised root's home > directory. For example on my phone I use /home/root in the Debian > install. >
A proper fix would be creating a unique file on-fly in a suitable /tmp subdir, with a known pattern. That subdir should be created on fly and root owned. -- Francesco P. Lovergine -- To UNSUBSCRIBE, email to [email protected] with a subject of "unsubscribe". Trouble? Contact [email protected]
