Bug #125966 for Mail-SRS: srs: /tmp/srsd socket schould not be in /tmp

RT for rt.cpan.org

This queue is for tickets about the Mail-SRS CPAN distribution.

Report information

The Basics

Id:	125966
Status:	new
Priority:	0/
Queue:	Mail-SRS

People

Owner:	Nobody in particular
Requestors:	CARNIL [...] cpan.org
Cc:
AdminCc:

Bug Information

Severity:	(no value)
Broken in:	(no value)
Fixed in:	(no value)

History Show all quoted text

Mon Jul 30 16:09:26 2018 CARNIL [...] cpan.org - Ticket created

From:	CARNIL [...] cpan.org
Subject:	srs: /tmp/srsd socket schould not be in /tmp

Hi, We have the following bug reported to the Debian package of Mail-SRS (https://bugs.debian.org/898383): Show quoted text

> /tmp is a bad place for the srsd socket. Unfortunately that pathname is > hardcoded (/usr/bin/srsd, line 15). It is probably not an exploitable > insecure tempfile creation, nonetheless it should not be there.

Regards, Salvatore