oss-sec mailing list archives

Re: Fw: Security risk of vim swap files

From: Michael Orlitzky <michael () orlitzky com>
Date: Mon, 6 Nov 2017 07:32:46 -0500

On 11/06/2017 02:08 AM, Christian Brabandt wrote:


On So, 05 Nov 2017, Jakub Wilk wrote:

Couldn't vim create swapfiles with mode 0600 and be done with it?


Because then users of the group could not recover the file anymore, 
although they are able to read the original file.


It also breaks (default) ACLs, but maybe if we do that in enough
important applications, the next generation of ACLs won't try to use the
group bits as a permissions mask.

Current thread:

Re: Fw: Security risk of vim swap files, (continued)
- - - Re: Fw: Security risk of vim swap files Christian Brabandt (Nov 05)
    - Re: Fw: Security risk of vim swap files Solar Designer (Nov 05)
    - Re: Fw: Security risk of vim swap files Scott Court (Nov 05)
    - Re: Fw: Security risk of vim swap files Kurt Seifried (Nov 05)
    - Re: Fw: Security risk of vim swap files Seth Arnold (Nov 06)
    - Re: Fw: Security risk of vim swap files Jakub Wilk (Nov 07)
    - Re: Fw: Security risk of vim swap files Christian Brabandt (Nov 06)
    - Re: Fw: Security risk of vim swap files Solar Designer (Nov 06)
    - Re: Fw: Security risk of vim swap files Jakub Wilk (Nov 05)
    - Re: Fw: Security risk of vim swap files Christian Brabandt (Nov 06)
    - Re: Fw: Security risk of vim swap files Michael Orlitzky (Nov 06)