oss-sec mailing list archives

Re: Fw: Security risk of vim swap files

From: Christian Brabandt <cb () 256bit org>
Date: Mon, 6 Nov 2017 08:11:58 +0100


On So, 05 Nov 2017, Solar Designer wrote:

Yes, let's also force 0600 for "undo and backup files", please.


Backup files and undo files are not created by default, only when Vim is 
configured to do so. Also the undofile does not leak any information, 
because as soon as the original file has been slightly altered, the undo 
information is discarded.

Christian
-- 
Den ungerechtesten Frieden finde ich immer noch besser als den
gerechtesten Krieg.
                -- Marcus Tullius Cicero (106-43 v.Chr.)

Current thread:

Re: Re: Fw: Security risk of vim swap files, (continued)
- - - Re: Re: Fw: Security risk of vim swap files Scott Court (Nov 03)
    - Re: Re: Fw: Security risk of vim swap files Nick Bowler (Nov 03)
    - Re: Fw: Security risk of vim swap files Christian Brabandt (Nov 03)
    - Re: Fw: Security risk of vim swap files Christian Brabandt (Nov 03)
    - Re: Fw: Security risk of vim swap files Christian Brabandt (Nov 05)
    - Re: Fw: Security risk of vim swap files Solar Designer (Nov 05)
    - Re: Fw: Security risk of vim swap files Scott Court (Nov 05)
    - Re: Fw: Security risk of vim swap files Kurt Seifried (Nov 05)
    - Re: Fw: Security risk of vim swap files Seth Arnold (Nov 06)
    - Re: Fw: Security risk of vim swap files Jakub Wilk (Nov 07)
    - Re: Fw: Security risk of vim swap files Christian Brabandt (Nov 06)
    - Re: Fw: Security risk of vim swap files Solar Designer (Nov 06)
    - Re: Fw: Security risk of vim swap files Jakub Wilk (Nov 05)
    - Re: Fw: Security risk of vim swap files Christian Brabandt (Nov 06)
    - Re: Fw: Security risk of vim swap files Michael Orlitzky (Nov 06)