[ofa-general] Re: [RFC] IB management changes proposal
Michael S. Tsirkin
mst at dev.mellanox.co.il
Thu Apr 26 09:08:25 PDT 2007
> Quoting Hal Rosenstock <halr at voltaire.com>:
> Subject: Re: [RFC] IB management changes proposal
>
> On Thu, 2007-04-26 at 01:02, Michael S. Tsirkin wrote:
> > > > There also some few commands (ib*.pl) that are using a file
> > > > /tmp/ibnetdiscover.topology. I suggest /var/cache/ibnetdiscover.topology
> > >
> > > I'm not sure about this one. I need to think about this more.
> >
> > Not sure about the best placement, but surely a predictable name
> > in a world-writeable directory is a security risk?
>
> Is /var/cache world writeable ? I thought it was just world readable. If
> this were to be done, I would think the opensm directory underneath this
> would be more appropriate but I'm not leaning towards doing this since I
> think the current approach is more flexible and the topology can be
> supplied to all needed commands/scripts.
I'm sorry, I'm not familiar with the code.
I was just saying that using /tmp/ibnetdiscover.topology is clearly
a security risk since /tmp is world-writeable. Isn't it?
--
MST
More information about the general
mailing list