I am using centos 6.

Should i secure /var/tmp or /tmp directories ?
Any guide on this .

thank you

Those directories must be owned by root and group root and must be permission 1777 ("ls -ld /tmp" should show drwxrwxrwt). Anything else is a problem and will break things.

_________________
Rgds
Stephen
(Linux user since kernel version 0.11)

% ls -ld /tmp /var/tmp
drwxrwxrwt 4 root root 4096 May 23 22:28 /tmp
drwxrwxrwt 2 root root 4096 May 18 06:25 /var/tmp

_________________
Rgds

Stephen

(Linux user since kernel version 0.11)

thank's

Because /tmp is a world read+write+execute directory it can be advisable to have it on its own partition and to mount it as nonexec. This means should someone be able to get a malicious program into your /tmp directory they will have a harder time executing it.

Also by having /tmp on its own partition if something goes crazy, from malice or mistake, with writing to it your entire drive won't get filled.

Some information on this at http://www.debian-administration.org/articles/57

I know you are running CentOS but same things apply.

Note noexec can break things such as compiling php modules using phpize etc..

_________________
Paid support
How to ask for help
1. Give details of your problem
2. Post any errors
3. Post relevant logs.
4. Don't hide details i.e. your domain, it just makes things harder
5. Be polite or you'll be eaten by a grue