Skip to content
This repository has been archived by the owner on Nov 24, 2022. It is now read-only.

vagrant-lxc-wrapper fails when TMPDIR is not /tmp #472

Closed
eigengrau opened this issue Sep 1, 2018 · 2 comments
Closed

vagrant-lxc-wrapper fails when TMPDIR is not /tmp #472

eigengrau opened this issue Sep 1, 2018 · 2 comments
Labels
ignored

Comments

@eigengrau
Copy link

vagrant-lxc-wrapper currently expects that TMPDIR=/tmp. E.g., TMPDIR=/run/user/1000 vagrant up will fail, with no specific error message, since whitelist regexps only refer to /tmp, whereas any temporary files created will reside elsewhere.
@ghost
Copy link

ghost commented Sep 3, 2018

I'm not sure of the security implications of adding that kind of flexibility to a whitelist-based sudoers file. This whitelist already seems a bit fragile security-wise, it seems to me like it should be avoided in favor of unprivileged containers.

De-hardcoding /tmp looks like something that will have many side-effects and that will require bug squashing in many places (or widening the whitelist so much that it becomes even more insecure).

If you produce a patch, we can continue the conversation around a specific proposition.

@fgrehm fgrehm added the ignored label Nov 17, 2022
@fgrehm
Copy link
Owner

fgrehm commented Nov 17, 2022

Hey, sorry for the silence here but this project is looking for maintainers 😅

As per #499, I've added the ignored label and will close this issue. Thanks for the interest in the project and LMK if you want to step up and take ownership of this project on that other issue 👋

@fgrehm fgrehm closed this as completed Nov 17, 2022
Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.
Assignees
No one assigned
Labels
ignored
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@fgrehm @eigengrau