Skip to content
Snippets Groups Projects
Select Git revision
  • docker_compose_development
  • main default protected
  • refactor_input_box
  • reconnect_on_startup
4 results

client.py

  • Johannes Knödtel's avatar
    6980aa72
    use XDG_RUNTIME_DIR instead of /tmp · 6980aa72
    Johannes Knödtel authored 
    The issue is, that POSIX only enforces the permissions of the containing
directory but not the permissions of the socket itself. This can lead to
potential security issues, as the command socket is not built for untrusted
input. In the case that `XDG_RUNTIME_DIR` is not available, a directory under
`/tmp` is created having the correct permissions to protect the socket under
it.
    6980aa72
    History
    use XDG_RUNTIME_DIR instead of /tmp
    Johannes Knödtel authored 
    The issue is, that POSIX only enforces the permissions of the containing
directory but not the permissions of the socket itself. This can lead to
potential security issues, as the command socket is not built for untrusted
input. In the case that `XDG_RUNTIME_DIR` is not available, a directory under
`/tmp` is created having the correct permissions to protect the socket under
it.