I'm configuring a new CentOS 3.4 server at the moment and would like some advice on how best to secure /tmp.
Partitioning has already been performed by the DC, so I don't have the opportunity of creating a separate partition for /tmp - currently there is just a /tmp directory.
I've read an article at http://www.eth0.us/?q=tmp regarding securing /tmp, specifically mentioning how one can create a partition for /tmp if one does not already exist.
What I'd first like to know are peoples' opinions on how safe it would be to proceed with the instructions within the article at http://www.eth0.us/?q=tmp regarding creating a new partition and mounting it as /tmp.
Secondly, what I would like to know is whether I'm better off trying to create a new partiion for /tmp or simply running /scripts/securetmp to secure what is currently in place. Is running /scripts/securetmp to secure my existing /tmp directory sufficient, or would I really be better off creating a partition for /tmp as explained in the above mentioned article?
Partitioning has already been performed by the DC, so I don't have the opportunity of creating a separate partition for /tmp - currently there is just a /tmp directory.
I've read an article at http://www.eth0.us/?q=tmp regarding securing /tmp, specifically mentioning how one can create a partition for /tmp if one does not already exist.
What I'd first like to know are peoples' opinions on how safe it would be to proceed with the instructions within the article at http://www.eth0.us/?q=tmp regarding creating a new partition and mounting it as /tmp.
Secondly, what I would like to know is whether I'm better off trying to create a new partiion for /tmp or simply running /scripts/securetmp to secure what is currently in place. Is running /scripts/securetmp to secure my existing /tmp directory sufficient, or would I really be better off creating a partition for /tmp as explained in the above mentioned article?
