Characteristics of Temporary Files
The most obvious characteristic of a temporary file is its impermanence. Beyond that, however, such files have certain other important characteristics.
Locations
Although it is possible for an application to create a temporary file anywhere the application's user has write privileges, temporary files are normally created in default directories; /tmp and /var/tmp are two of the most common, although sometimes they may also be created, possibly within a hidden subdirectory, in a user's home directory. In these well-known default locations, they are much more exposed than if they were located elsewhere. To make matters worse, these default locations are typically world-writable (if they were not, most applications ...
Get Pro PHP Security: From Application Security Principles to the Implementation of XSS Defenses, Second Edition now with the O’Reilly learning platform.
O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.
