Skip to content

Security issue of /tmp directory

Submitted by Yan Pas

Assigned to Jérôme Guelfucci

Link to original bug (#12196)

Description

Let's imagine I have two users Alice (amdin rights) and Bob (no amdin rights). If Alice takes a screenshot via xfce4-screenshoter and opens it in GIMP - it is saved to /tmp directory. Then Alice logs out, and Bob logs in. Bob is availible to read /tmp and he can see Alices screenshot... awful! It's better to store temp screenshots in ~/.cache. E. G. Alice may use ecryptfs and her ~/.cache dir will be encrypted. Or Alice may forbid to read her home folder (default behavior on Centos. So temporary screenshots must be stored somewhere in home dir.