For the 2015-01-28 meeting as the Change Proposal was announced on devel-announce list on 2015-01-20.
Polyinstantiation of temperary directories is a pro-active security measure, which reduced chances of attacks caused due to the /tmp and /var/tmp directories being world-writable. These include flaws caused by predictive temp. file names, race conditions due to symbolic links etc.
I wont be able to attend today's meeting due to traveling to FOSDEM, so voting here.
Based on the outcome of devel-list discussion, I'm -1 for this change as proposed. I seems that there are too many possible complications for some security enhancement. Although I'm +1 for such feature being available to the users in Fedora and for users being able to turn it easily on/off using single command.
This change is not approved as written (-6,0,0)
Login to comment on this ticket.