+1 😄


> On Dec 4, 2014, at 7:08 PM, Bruce Ellis <bruce.ellis@gmail.com> wrote:
> 
> Don't these people have better things to do than finding non-bugs in systems they don't understand?
> 
> brucee
> 
>> On 5 December 2014 at 13:33, Charles Forsyth <charles.forsyth@gmail.com> wrote:
>> 
>>> On Wed, Dec 3, 2014 at 11:49 PM, Stéphane Aulery <saulery@free.fr> wrote:
>>> discovered that rc
>>>    creates temporary files in an insecure way:
>> 
>> rc was built for a system that made /tmp secure by not sharing it (it's always private to a user and even sometimes to a set of processes).
>> That way not every app has to try to help sustain the pretence that a shared /tmp can really be secured (+s bits, EXCL create, etc..)
>> Obviously the version for Unix will have to change its generation scheme to fit in.
>