LinuxQuestions.org

LinuxQuestions.org (/questions/)
-   Linux - Security (http://www.linuxquestions.org/questions/linux-security-4/)
-   -   tmp filling up with root-tmp diretories (http://www.linuxquestions.org/questions/linux-security-4/tmp-filling-up-with-root-tmp-diretories-804300/)

steinz 04-26-2010 11:47 AM

tmp filling up with root-tmp diretories
 
Hi,

My /tmp directory is being filled up with root-tmp.####.

I suspect they are being created by bastille-tmpdir-defense.sh, but they do not seem to get removed. Anyone know why?



Thanks
Randy

EricTRA 04-26-2010 11:56 AM

Hello,

What distro are you using? Not that it's that important since logrotate exists in most (if not all) Linux distros. That being said, do you have those logs rotated with logrotate? That's a great way to automatically clean up 'old' logs. If you're only generating logs, without doing some housecleaning then it's quite normal your /tmp is filling up.

Kind regards,

Eric

steinz 04-26-2010 01:18 PM

I am running RHEL 4 update 7

EricTRA 04-26-2010 01:28 PM

Hi,

And did you set up logrotate to rotate the logs of the application you think is filling up your /tmp?

Kind regards,

Eric

steinz 04-26-2010 01:33 PM

I do not think these are logs, I think Bastille is creating a private /tmp location for any user that requires the use of /tmp. It is for my own security.

EricTRA 04-26-2010 01:46 PM

Hi,

I'm sorry, I'm completely on the wrong track here. That happens when trying to multitask an old brain. Sorry for that.

I looked some things up in Google and found that when running:
Code:

bastille -c
you are at a certain point presented the choice:
Code:

Would you like to install TMPDIR/TMP scripts? ->
Did you set that by any chance to Y (yes)? Could you reconfigure bastille and set it to N (no) to see if that makes a difference? Apparently according to a howto on HowToForge the preferred setting is N for this particular option.

I don't know nor have any experience with Bastille, so just offering ideas.

Kind regards,

Eric

steinz 04-27-2010 08:28 AM

thanks, I think your right, I did set Would you like to install TMPDIR/TMP scripts? to YES.
But I might just try to delete /etc/profile.d/bastille-tmpdir-defense.sh, rather than reinstall Bastille.

Randy

EricTRA 04-27-2010 08:34 AM

Hi,

OK, I hope it works out. Please let us know if it does.

Kind regards,

Eric


All times are GMT -5. The time now is 08:38 AM.