Ecosyste.ms: Awesome

An open API service indexing awesome lists of open source software.

Awesome Lists | Featured Topics | Projects

https://github.com/osas/ansible-role-polyinst_tmp

Ansible module used by OSAS to enable polyinstanciated /tmp
https://github.com/osas/ansible-role-polyinst_tmp

Last synced: 6 days ago
JSON representation

Ansible module used by OSAS to enable polyinstanciated /tmp

Host: GitHub
URL: https://github.com/osas/ansible-role-polyinst_tmp
Owner: OSAS
License: mit
Created: 2015-01-02T15:33:48.000Z (almost 10 years ago)
Default Branch: master
Last Pushed: 2017-06-08T12:42:14.000Z (over 7 years ago)
Last Synced: 2024-03-26T18:50:07.780Z (8 months ago)
Size: 4.88 KB
Stars: 0
Watchers: 19
Forks: 1
Open Issues: 1
Metadata Files:
- Readme: README.md
- License: LICENSE

Awesome Lists containing this project

README

        This role setup a polyinstantiated /tmp directory, as described in [PAM documentation](http://www.linux-pam.org/Linux-PAM-html/sag-pam_namespace.html), 

or on [RHEL documentation](https://access.redhat.com/documentation/en-US/Red_Hat_Enterprise_Linux/6/html/Security-Enhanced_Linux/polyinstantiated-directories.html)

The goal is to prevent a whole class of attack based on shared /tmp and predictable name, especially on shared computers where multiple

user have access.

The role do not requires any configuration, and should just be deployed on a system to be used.

[![Build Status](https://travis-ci.org/OSAS/ansible-role-polyinst_tmp.svg?branch=master)](https://travis-ci.org/OSAS/ansible-role-polyinst_tmp)