Hi,
/tmp is a really bad idea and a security hole, if the name .rnd is used at least.
I think having it shared between users would perhaps be a security hole as well.
Having it use a proper tmpfile may be possible, but it may still be at risk.
I'm not sure the file is required though, so it may be possible to not fail if the file can't be created, I'm not sure.
Thanks,
James
Hi,
/tmp is a really bad idea and a security hole, if the name .rnd is
used at least.
I think having it shared between users would perhaps be a security
hole as well.
Having it use a proper tmpfile may be possible, but it may still be at
risk.
I'm not sure the file is required though, so it may be possible to not
fail if the file can't be created, I'm not sure.
Thanks,
James